Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.16 views

Fedora 39 : golang-gvisor (2024-9cc0e0c63e)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-9cc0e0c63e advisory. Update golang-gvisor to 20240408.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessu...

7.5CVSS7.1AI score0.03796EPSS
Exploits0References2
OSV
OSV
added 2024/03/06 10:53 a.m.34 views

BIT-GOLANG-2023-39325 HTTP/2 rapid reset can cause excessive work in net/http

A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a ne...

7.5CVSS7.3AI score0.03796EPSS
Exploits0References44
OSV
OSV
added 2023/11/01 7:18 a.m.55 views

BIT-2023-39325

A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a ne...

7.5CVSS7.1AI score0.03796EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2023/10/11 10:15 p.m.50 views

CVE-2023-39325

A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a ne...

7.5CVSS6.9AI score
Exploits0References43
OSV
OSV
added 2023/10/11 10:15 p.m.9 views

AZL-35096 CVE-2023-39325 affecting package packer for versions less than 1.9.5-1

A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a ne...

7.5CVSS6.6AI score0.03796EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2023/10/11 9:15 p.m.45 views

CVE-2023-39325

A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a ne...

7.5CVSS6.6AI score0.03796EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2023/10/11 8:35 p.m.57 views

HTTP/2 rapid reset can cause excessive work in net/http

A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a ne...

7.5CVSS7.7AI score0.03796EPSS
Exploits0References46Affected Software1
Rows per page
Query Builder