Lucene search
K

83 matches found

OSV
OSV
added 2024/05/29 4:15 p.m.20 views

CVE-2024-35200

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate...

5.3CVSS6.7AI score
Exploits0References4
OSV
OSV
added 2024/05/29 4:15 p.m.20 views

CVE-2024-31079

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate or cause other potential impact. This attack requires that a request be specifically timed during the connection draining process, which the attacke...

4.8CVSS6.6AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/05/29 4:15 p.m.33 views

CVE-2024-32760

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 encoder instructions can cause NGINX worker processes to terminate or cause or other potential impact...

6.5CVSS6.9AI score0.00848EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/05/29 4:15 p.m.28 views

CVE-2024-31079

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate or cause other potential impact. This attack requires that a request be specifically timed during the connection draining process, which the attacke...

4.8CVSS6.7AI score0.00872EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/05/29 4:15 p.m.25 views

CVE-2024-35200

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate...

5.3CVSS6.8AI score0.00917EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2024/05/29 4:2 p.m.37 views

CVE-2024-34161

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module and the network infrastructure supports a Maximum Transmission Unit MTU of 4096 or greater without fragmentation, undisclosed QUIC packets can cause NGINX worker processes to leak previously freed memory...

5.3CVSS5.6AI score0.00867EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2024/05/29 4:2 p.m.32 views

CVE-2024-35200

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate...

5.3CVSS5.7AI score0.00917EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/05/29 4:2 p.m.29 views

CVE-2024-35200 NGINX HTTP/3 QUIC vulnerability

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate...

5.3CVSS5.2AI score0.00917EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/05/29 4:2 p.m.28 views

CVE-2024-34161 NGINX HTTP/3 QUIC vulnerability

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module and the network infrastructure supports a Maximum Transmission Unit MTU of 4096 or greater without fragmentation, undisclosed QUIC packets can cause NGINX worker processes to leak previously freed memory...

5.3CVSS5.2AI score0.00867EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/05/29 4:2 p.m.32 views

CVE-2024-35200

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate...

5.3CVSS5.7AI score0.00917EPSS
Exploits0
Debian CVE
Debian CVE
added 2024/05/29 4:2 p.m.35 views

CVE-2024-34161

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module and the network infrastructure supports a Maximum Transmission Unit MTU of 4096 or greater without fragmentation, undisclosed QUIC packets can cause NGINX worker processes to leak previously freed memory...

5.3CVSS5.6AI score0.00867EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2024/05/29 4:2 p.m.28 views

CVE-2024-31079

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate or cause other potential impact. This attack requires that a request be specifically timed during the connection draining process, which the attacke...

4.8CVSS5.3AI score0.00872EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2024/05/29 4:2 p.m.22 views

CVE-2024-32760

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 encoder instructions can cause NGINX worker processes to terminate or cause or other potential impact...

6.5CVSS6.8AI score0.00848EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/05/29 4:2 p.m.33 views

CVE-2024-31079 NGINX HTTP/3 QUIC vulnerability

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate or cause other potential impact. This attack requires that a request be specifically timed during the connection draining process, which the attacke...

4.8CVSS5AI score0.00872EPSS
Exploits0References4
CVE
CVE
added 2024/05/29 4:2 p.m.393 views

CVE-2024-31079

CVE-2024-31079 affects NGINX Plus and NGINX Open Source when using the HTTP/3 QUIC module (ngx_http_v3_module). The underlying issue is triggered by undisclosed HTTP/3 requests timed during the connection draining process, causing worker processes to terminate or similar impact. Exploitation stat...

4.8CVSS5AI score0.00872EPSS
Exploits0References4Affected Software2
Debian CVE
Debian CVE
added 2024/05/29 4:2 p.m.33 views

CVE-2024-31079

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate or cause other potential impact. This attack requires that a request be specifically timed during the connection draining process, which the attacke...

4.8CVSS5.3AI score0.00872EPSS
Exploits0
Debian CVE
Debian CVE
added 2024/05/29 4:2 p.m.46 views

CVE-2024-32760

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 encoder instructions can cause NGINX worker processes to terminate or cause or other potential impact...

6.5CVSS6.8AI score0.00848EPSS
Exploits0
Cvelist
Cvelist
added 2024/05/29 4:2 p.m.55 views

CVE-2024-32760 NGINX HTTP/3 QUIC vulnerability

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 encoder instructions can cause NGINX worker processes to terminate or cause or other potential impact...

6.5CVSS6.3AI score0.00848EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/05/29 4:2 p.m.74 views

CVE-2024-31079 NGINX HTTP/3 QUIC vulnerability

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate or cause other potential impact. This attack requires that a request be specifically timed during the connection draining process, which the attacke...

4.8CVSS5AI score0.00872EPSS
Exploits0References4
F5 Networks
F5 Networks
added 2024/05/29 1:36 p.m.53 views

K000139611: NGINX HTTP/3 QUIC vulnerability CVE-2024-31079

Security Advisory Description When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate or cause other potential impact. This attack requires that a request be specifically timed during the connection...

4.8CVSS6.7AI score0.00872EPSS
Exploits0Affected Software2
Rows per page
Query Builder