Lucene search
LitespeedtechLsquic
2 matches found
CVE-2025-24947
A hash collision vulnerability (in the hash table used to manage connections) in LSQUIC (aka LiteSpeed QUIC) before 4.2.0 allows remote attackers to cause a considerable CPU load on the server (a Hash DoS attack) by initiating connections with colliding Source Connection IDs (SCIDs). This is caused...
5.3CVSS5.3AI score0.00065EPSS
CVE-2025-54939
LiteSpeed QUIC (LSQUIC) Library before 4.3.1 has an lsquic_engine_packet_in memory leak.
5.3CVSS7.2AI score0.00039EPSS