Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/06/15 8:35 a.m.14 views

CVE-2026-45416

A flaw was found in Netty, a network application framework. A remote attacker can exploit this vulnerability by sending a crafted TLS Transport Layer Security ClientHello message. This can lead to an eager allocation of a large memory buffer, causing a Denial of Service DoS due to excessive memor...

7.5CVSS5.4AI score0.00461EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/15 11:3 a.m.6 views

EUVD-2025-34607

In NetX Duo version before 6.4.4, the component of Eclipse Foundation ThreadX, there was a potential out of bound read in nxsecuretlsprocessclienthello because of a missing validation of PSK length provided in the user message...

6.9CVSS6.2AI score0.00229EPSS
Exploits0References1
NVD
NVD
added 2025/09/03 6:15 p.m.11 views

CVE-2025-52494

Adacore Ada Web Server AWS before 25.2 is vulnerable to a denial-of-service DoS condition due to improper handling of SSL handshakes during connection initialization. When a client initiates an HTTPS connection, the server performs the SSL handshake before assigning the connection to a processing...

7.5CVSS0.00331EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2024/02/07 7:29 a.m.58 views

CVE-2024-1300

A vulnerability in the Eclipse Vert.x toolkit causes a memory leak in TCP servers configured with TLS and SNI support. When processing an unknown SNI server name assigned the default certificate instead of a mapped certificate, the SSL context is erroneously cached in the server name map, leading...

5.4CVSS5.7AI score0.01055EPSS
Exploits0References4
Kitploit
Kitploit
added 2020/09/04 12:30 p.m.75 views

SNIcat - Server Name Indication Concatenator

SNIcat is a proof of concept tool that performs data exfiltration, utilizing a covert channel method via. Server Name Indication , a TLS Client Hello Extension. The tool consists of an agent which resides on the compromised internal host, and a Command &Control Server which controls the agent and...

7.5AI score
Exploits0References2
Snyk
Snyk
added 2019/05/23 1:29 p.m.5 views

Out-of-Bounds

Overview Affected versions of this package are vulnerable to Out-of-Bounds wolfSSL 4.0.0 has a Buffer Overflow in DoPreSharedKeys in tls13.c when a current identity size is greater than a client identity size. An attacker sends a crafted hello client packet over the network to a TLSv1.3 wolfSSL...

9.8CVSS8AI score0.08777EPSS
Exploits0References2
Rows per page
Query Builder