Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

NVD
NVDadded 2024/08/22 2:15 a.m.23 views

CVE-2022-48906

In the Linux kernel, the following vulnerability has been resolved: mptcp: Correctly set DATAFIN timeout when number of retransmits is large Syzkaller with UBSAN uncovered a scenario where a large number of DATAFIN retransmits caused a shift-out-of-bounds in the DATAFIN timeout calculation:...

5.5CVSS0.00028EPSS
Exploits0References3
OSV
OSVadded 2024/08/22 1:30 a.m.10 views

CVE-2022-48906 mptcp: Correctly set DATA_FIN timeout when number of retransmits is large

In the Linux kernel, the following vulnerability has been resolved: mptcp: Correctly set DATAFIN timeout when number of retransmits is large Syzkaller with UBSAN uncovered a scenario where a large number of DATAFIN retransmits caused a shift-out-of-bounds in the DATAFIN timeout calculation:...

5.5CVSS6AI score0.00028EPSS
Exploits0References6
OSV
OSVadded 2024/03/06 10:59 a.m.17 views

BIT-ENVOY-2021-28682

An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable integer overflow in which a very large grpc-timeout value leads to unexpected timeout calculations...

7.5CVSS7.5AI score0.00095EPSS
Exploits1References5
CNVD
CNVDadded 2021/05/21 12:0 a.m.22 views

Envoy integer overflow vulnerability

Envoy is an open source distributed proxy server. versions prior to Envoy 1.71.1 are vulnerable to integer overflow, which can be exploited by an attacker with an excessive grpc-timeout value to cause an unexpected timeout calculation...

7.5CVSS6.2AI score0.00095EPSS
Exploits1References1
Prion
Prionadded 2021/05/20 5:15 p.m.22 views

Integer overflow

An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable integer overflow in which a very large grpc-timeout value leads to unexpected timeout calculations...

5CVSS7.5AI score0.00095EPSS
Exploits1References4Affected Software1
Veracode
Veracodeadded 2021/04/24 10:47 p.m.26 views

Denial Of Service (DoS)

servicemesh-proxy is vulnerable to denial of service. An attacker is able to crash the application by sending a malicious packet that specifies a large grpc-timeout, causing envoy to incorrectly calculate the timeouts...

7.5CVSS4AI score0.00095EPSS
Exploits1References8Affected Software1
RedhatCVE
RedhatCVEadded 2021/04/15 9:2 p.m.31 views

CVE-2021-28682

A flaw was found in envoyproxy/envoy. An attacker, able to craft a packet which specifies a large grpc-timeout, can potentially cause envoy to incorrectly calculate the timeouts resulting in a denial of service. The highest threat from this vulnerability is to system availability...

7.5CVSS2.8AI score0.00095EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2016/12/13 12:0 a.m.29 views

openSUSE Security Update : pacemaker (openSUSE-2016-1447)

This update for pacemaker fixes the following issues : - remote: Allow cluster and remote LRM API versions to diverge bsc1009076 - libcrmcommon: fix CVE-2016-7035 improper IPC guarding bsc1007433 - sysconfig: minor tweaks typo, wording - spec: more robust check for systemd being in use - spec:...

8.8CVSS7.6AI score0.02415EPSS
Exploits0References11
Rows per page
Query Builder