1152 matches found
WordPress Varnish/Nginx Proxy Caching <= 1.8.3 - Information Exposure
Razvan Stanga Varnish/Nginx Proxy Caching = 1.8.3 contains an insertion of sensitive information into sent data vulnerability caused by improper handling of embedded sensitive data, letting attackers retrieve sensitive information, exploit requires crafted requests. id: CVE-2025-62126 info: name:...
ROOT-OS-DEBIAN-11-CVE-2023-44487 CVE-2023-44487 in rootio-varnish - Patched by Root
Root has patched CVE-2023-44487 in the rootio-varnish package for Root:Debian:11. Multiple fixed versions available...
[SECURITY] Fedora 43 Update: vmod-querystring-2.0.3-11.fc43
The purpose of this module is to give you a fine-grained control over a URL's query-string in Varnish Cache. It's possible to remove the query-string, clean it, sort its parameters or filter it to only keep a subset of them. This can greatly improve your hit ratio and efficiency with Varnish,...
[SECURITY] Fedora 43 Update: varnish-modules-0.26.0-4.fc43
This is a collection of modules "vmods" extending Varnish VCL used for describing HTTP request/response policies with additional capabilities. This collection contains the following vmods: bodyaccess, header, saintmode, tcp, var, vsthrottle, xkey...
[SECURITY] Fedora 43 Update: varnish-7.7.3-2.fc43
This is Varnish Cache, a high-performance HTTP accelerator. Varnish Cache stores web pages in memory so web servers don=E2=80=99t have to create the same web page over and over again. Varnish Cache serves pages much faster than any application server; giving the website a significant speed up...
ROOT-OS-DEBIAN-12-CVE-2026-34475 CVE-2026-34475 in rootio-varnish - Patched by Root
Root has patched CVE-2026-34475 in the rootio-varnish package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2024-30156 CVE-2024-30156 in rootio-varnish - Patched by Root
Root has patched CVE-2024-30156 in the rootio-varnish package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2023-44487 CVE-2023-44487 in rootio-nginx - Patched by Root
Root has patched CVE-2023-44487 in the rootio-nginx package for Root:Debian:12. Multiple fixed versions available...
[SECURITY] Fedora 44 Update: varnish-modules-0.27.0-4.fc44
This is a collection of modules "vmods" extending Varnish VCL used for describing HTTP request/response policies with additional capabilities. This collection contains the following vmods: bodyaccess, header, saintmode, tcp, var, vsthrottle, xkey...
[SECURITY] Fedora 44 Update: varnish-8.0.2-1.fc44
This is Varnish Cache, a high-performance HTTP accelerator. Varnish Cache stores web pages in memory so web servers don=E2=80=99t have to create the same web page over and over again. Varnish Cache serves pages much faster than any application server; giving the website a significant speed up...
[SECURITY] Fedora 44 Update: vmod-querystring-2.0.3-13.fc44
The purpose of this module is to give you a fine-grained control over a URL's query-string in Varnish Cache. It's possible to remove the query-string, clean it, sort its parameters or filter it to only keep a subset of them. This can greatly improve your hit ratio and efficiency with Varnish,...
Fedora 44 : collectd / varnish / varnish-modules / vmod-querystring / vmod-uuid (2026-2148c0e80b)
The remote Fedora 44 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2026-2148c0e80b advisory. New upstream release varnish-8.0.2, a security release. Includes fix for VSV00019. Dependent packages are included in this update. Tenable has extracted the...
OESA-2026-2677 varnish security update
This is Varnish Cache, a web application accelerator also known as a caching HTTP reverse proxy. You install it in front of any server that speaks HTTP and configure it to cache the contents. Varnish Cache is really, really fast. It typically speeds up delivery with a factor of 300 - 1000x,...
CVE-2026-50052
In Vinyl Cache before 9.0.1 and Varnish Cache before 9.0.3, a deficiency in HTTP/2 request parsing can be exploited to launch a backend request desync attack request smuggling, which in turn can be used for cache poisoning, authentication bypass, or possibly even information disclosure and...
UBUNTU-CVE-2026-50052
In Vinyl Cache before 9.0.1 and Varnish Cache before 9.0.3, a deficiency in HTTP/2 request parsing can be exploited to launch a backend request desync attack request smuggling, which in turn can be used for cache poisoning, authentication bypass, or possibly even information disclosure and...
CVE-2026-50052
In Vinyl Cache before 9.0.1 and Varnish Cache before 9.0.3, a deficiency in HTTP/2 request parsing can be exploited to launch a backend request desync attack request smuggling, which in turn can be used for cache poisoning, authentication bypass, or possibly even information disclosure and...
CVE-2026-50052
In Vinyl Cache before 9.0.1 and Varnish Cache before 9.0.3, a deficiency in HTTP/2 request parsing can be exploited to launch a backend request desync attack request smuggling, which in turn can be used for cache poisoning, authentication bypass, or possibly even information disclosure and...
EUVD-2026-34066
In Vinyl Cache before 9.0.1 and Varnish Cache before 9.0.3, a deficiency in HTTP/2 request parsing can be exploited to launch a backend request desync attack request smuggling, which in turn can be used for cache poisoning, authentication bypass, or possibly even information disclosure and...
CVE-2026-50052
Affected products/versions: Vinyl Cache < 9.0.1 and Varnish Cache
Varnish Cache和Vinyl Cache 环境问题漏洞
Varnish Cache is a set of reverse website caching servers provided by the Varnish company. Vinyl Cache is a high-performance HTTP reverse proxy and web application caching acceleration platform offered by the Vinyl Cache company. Versions of Vinyl Cache prior to 9.0.1 and Varnish Cache prior to...