Lucene search
K

5 matches found

Debian CVE
Debian CVE
added 2023/08/04 5:32 p.m.27 views

CVE-2023-38697

protocol-http1 provides a low-level implementation of the HTTP/1 protocol. RFC 9112 Section 7.1 defined the format of chunk size, chunk data and chunk extension. The value of Content-Length header should be a string of 0-9 digits, the chunk size should be a string of hex digits and should split...

5.8CVSS5.1AI score0.00637EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2023/08/03 4:36 p.m.30 views

protocol-http1 HTTP Request/Response Smuggling vulnerability

Impact RFC 9112 Section 7.1 defined the format of chunk size, chunk data and chunk extension detailed ABNF is in Appendix section. In summary: - The value of Content-Length header should be a string of 0-9 digits. - The chunk size should be a string of hex digits and should split from chunk data...

5.8CVSS6.3AI score0.00637EPSS
Exploits0References7Affected Software1
RubySec
RubySec
added 2023/08/03 12:0 a.m.20 views

protocol-http1 HTTP Request/Response Smuggling vulnerability

Impact RFC 9112 Section 7.1 defined the format of chunk size, chunk data and chunk extension detailed ABNF is in Appendix section. In summary: - The value of Content-Length header should be a string of 0-9 digits. - The chunk size should be a string of hex digits and should split from chunk data...

5.8CVSS6.8AI score0.00637EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/09/09 7:15 p.m.4 views

CVE-2022-36110 Netmaker vulnerable to Insufficient Granularity of Access Control

Netmaker makes networks with WireGuard. Prior to version 0.15.1, Improper Authorization functions lead to non-privileged users running privileged API calls. If someone adds users to the Netmaker platform who do not have admin privileges, they can use their auth tokens to run admin-level functions...

8.8CVSS8.5AI score0.00702EPSS
Exploits0References2
pentestit
pentestit
added 2019/06/10 11:15 p.m.172 views

UPDATE: Sysdig Falco v0.15.1

PenTestIT RSS Feed Three days ago, an updated version – Sysdig Falco v0.15.1 – was released. It has been some time since I last blogged about this open source behavorial activity monitor which has container support. This release remediates integration issues with Anchore by updating urllib3 and...

6.2CVSS1.9AI score0.03398EPSS
Exploits2
Rows per page
Query Builder