Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-41723

Published: 28/02/2023 Updated: 25/11/2023
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Go

Vulnerability Summary

The x/crypto/ssh package prior to 0.0.0-20211202192323-5770296d904e of golang.org/x/crypto allows an malicious user to panic an SSH server. (CVE-2021-43565) http2/hpack: avoid quadratic complexity in hpack decoding (CVE-2022-41723) Templates did not properly consider backticks (`) as Javascript string delimiters, and as such didnot escape them as expected. Backticks are used, since ES6, for JS template literals. If a templatecontained a Go template action within a Javascript template literal, the contents of the action couldbe used to terminate the literal, injecting arbitrary Javascript code into the Go template. (CVE-2023-24538)

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

golang go

golang go 1.20.0

golang http2

golang hpack

Vendor Advisories

Amazon Linux AMI: ALAS-2023-1881
http2/hpack: avoid quadratic complexity in hpack decoding (CVE-2022-41723) ...
Amazon Linux AMI: ALAS-2023-1866
The x/crypto/ssh package before 000-20211202192323-5770296d904e of golangorg/x/crypto allows an attacker to panic an SSH server (CVE-2021-43565) http2/hpack: avoid quadratic complexity in hpack decoding (CVE-2022-41723) Templates did not properly consider backticks (`) as Javascript string delimiters, and as such didnot escape them as expected ...
Amazon Linux AMI: ALAS-2023-1731
Code injection in CmdStart in os/exec before Go 11711 and Go 1183 allows execution of any binaries in the working directory named either "com" or "exe" by calling CmdRun, CmdStart, CmdOutput, or CmdCombinedOutput when CmdPath is unset (CVE-2022-30580) Infinite loop in Read in crypto/rand before Go 11711 and Go 1183 on Windows all ...
Amazon Linux AMI: ALAS-2023-1849
http2/hpack: avoid quadratic complexity in hpack decoding (CVE-2022-41723) The HTTP/1 client does not fully validate the contents of the Host header A maliciously crafted Host header can inject additional headers or entire requests With fix, the HTTP/1 client now refuses to send requests containing an invalid RequestHost or RequestURLHost valu ...
Amazon Linux AMI: ALAS-2023-1825
The x/crypto/ssh package before 000-20211202192323-5770296d904e of golangorg/x/crypto allows an attacker to panic an SSH server (CVE-2021-43565) A broken cryptographic algorithm flaw was found in golangorg/x/crypto/ssh This issue causes a client to fail authentification with RSA keys to servers that reject signature algorithms based on SHA-2, ...
Red Hat: Moderate: OpenShift Container Platform 4.13.6 security and extras update
Synopsis Moderate: OpenShift Container Platform 4136 security and extras update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4136 is now available with updates to packages and images that fix several bugsThis release includes a security update for Red Hat OpenShift Container Platform 413R ...
Red Hat: Important: Migration Toolkit for Applications security and bug fix update
Synopsis Important: Migration Toolkit for Applications security and bug fix update Type/Severity Security Advisory: Important Topic Migration Toolkit for Applications 620 releaseRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a deta ...
Red Hat: Important: OpenShift Container Platform 4.13.17 bug fix and security update
概要 Important: OpenShift Container Platform 41317 bug fix and security update タイプ/重大度 Security Advisory: Important トピック Red Hat OpenShift Container Platform release 41317 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Ha ...
Red Hat: Moderate: podman security, bug fix, and enhancement update
Synopsis Moderate: podman security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for podman is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated th ...
Red Hat: Important: OpenShift Virtualization 4.12.8 Images security update
Synopsis Important: OpenShift Virtualization 4128 Images security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Virtualization release 4128 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a security impact o ...
Red Hat: Moderate: OpenShift Container Platform 4.13.1 bug fix and security update
Synopsis Moderate: OpenShift Container Platform 4131 bug fix and security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4131 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Con ...
Red Hat: Moderate: OpenShift Container Platform 4.13.9 bug fix and security update
Synopsis Moderate: OpenShift Container Platform 4139 bug fix and security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4139 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Con ...
Red Hat: Moderate: Migration Toolkit for Containers (MTC) 1.7.11 security and bug fix update
Synopsis Moderate: Migration Toolkit for Containers (MTC) 1711 security and bug fix update Type/Severity Security Advisory: Moderate Topic The Migration Toolkit for Containers (MTC) 1711 is now availableRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) bas ...
Red Hat: Moderate: OpenShift Container Platform 4.13.6 bug fix and security update
Synopsis Moderate: OpenShift Container Platform 4136 bug fix and security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4136 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Con ...
Red Hat: Moderate: Red Hat OpenShift Service Mesh Containers for 2.3.5 security update
Synopsis Moderate: Red Hat OpenShift Service Mesh Containers for 235 security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Service Mesh 235 ContainersRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a det ...
Red Hat: Moderate: Red Hat OpenShift Service Mesh 2.2.8 security update
Synopsis Moderate: Red Hat OpenShift Service Mesh 228 security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Service Mesh 228Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is ...
Red Hat: Moderate: Release of OpenShift Serverless 1.29.0
Synopsis Moderate: Release of OpenShift Serverless 1290 Type/Severity Security Advisory: Moderate Topic OpenShift Serverless version 1290 contains a moderate security impactThe References section contains CVE links providing detailed severity ratingsfor each vulnerability Ratings are based on a Common Vulnerability ScoringSystem (CVSS) ...
Red Hat: Moderate: OpenShift Serverless Client kn 1.29.0 release
Synopsis Moderate: OpenShift Serverless Client kn 1290 release Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic OpenShift Serverless 1290 has been released The References section contains CVE links providing detailed s ...
Red Hat: Important: Red Hat OpenStack Platform 16.1 (etcd) security update
Synopsis Important: Red Hat OpenStack Platform 161 (etcd) security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for etcd is now available for Red Hat OpenStack Platform 161(Train)Red Hat Product Sec ...
Red Hat: Important: Red Hat OpenStack Platform 16.2 (etcd) security update
Synopsis Important: Red Hat OpenStack Platform 162 (etcd) security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for etcd is now available for Red Hat OpenStack Platform 162(Train)Red Hat Product Sec ...
Red Hat: Moderate: OpenShift Container Platform 4.13.4 bug fix and security update
Synopsis Moderate: OpenShift Container Platform 4134 bug fix and security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4134 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Con ...
Red Hat: Important: OpenShift Virtualization 4.12.5 security and bug fix update
Synopsis Important: OpenShift Virtualization 4125 security and bug fix update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Virtualization release 4125 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a security imp ...
Red Hat: Important: OpenShift Container Platform 4.12.46 bug fix and security update
Synopsis Important: OpenShift Container Platform 41246 bug fix and security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Container Platform release 41246 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift ...
Red Hat: Moderate: OpenShift Container Platform 4.13.10 security update
Synopsis Moderate: OpenShift Container Platform 41310 security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 41310 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Container Pla ...
Red Hat: Important: OpenShift Virtualization 4.13.3 Images security and bug fix update
Synopsis Important: OpenShift Virtualization 4133 Images security and bug fix update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Virtualization release 4133 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a secur ...
Red Hat: Important: OpenShift API for Data Protection (OADP) 1.1.5 security and bug fix update
Synopsis Important: OpenShift API for Data Protection (OADP) 115 security and bug fix update Type/Severity Security Advisory: Important Topic OpenShift API for Data Protection (OADP) 115 is now availableRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) ba ...
Red Hat: Important: OpenShift Virtualization 4.11.7 Images security and bug fix update
Synopsis Important: OpenShift Virtualization 4117 Images security and bug fix update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Virtualization release 4117 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a secur ...
Red Hat: Moderate: OpenShift Container Platform 4.13.3 bug fix and security update
Synopsis Moderate: OpenShift Container Platform 4133 bug fix and security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4133 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Con ...
Red Hat: Important: Security Update for cert-manager Operator for Red Hat OpenShift 1.10.3
Synopsis Important: Security Update for cert-manager Operator for Red Hat OpenShift 1103 Type/Severity Security Advisory: Important Topic cert-manager Operator for Red Hat OpenShift 1103Red Hat Product Security has rated this update as having a security impactof Important A Common Vulnerability Scoring System (CVSS) base score, whichgive ...
Red Hat: Moderate: OpenShift Container Platform 4.13.8 bug fix and security update
Synopsis Moderate: OpenShift Container Platform 4138 bug fix and security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4138 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Con ...
Red Hat: Moderate: OpenShift Container Platform 4.13.0 security update
Synopsis Moderate: OpenShift Container Platform 4130 security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4130 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a security impact of ...
Red Hat: Moderate: Red Hat Service Interconnect 1.4 Release security update
Synopsis Moderate: Red Hat Service Interconnect 14 Release security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic This is release 14 of the rpms for Red Hat Service Interconnect Red Hat Service Interconnect 14 ...
Red Hat: Important: OpenShift Virtualization 4.13.5 Images security update
Synopsis Important: OpenShift Virtualization 4135 Images security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Virtualization release 4135 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a security impact o ...
Red Hat: Moderate: OpenShift Container Platform 4.13.5 security update
Synopsis Moderate: OpenShift Container Platform 4135 security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4135 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Container Platf ...
Red Hat: Moderate: OpenShift Container Platform 4.13.5 security update
Synopsis Moderate: OpenShift Container Platform 4135 security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4135 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Container Platf ...
Red Hat: Moderate: OpenShift API for Data Protection (OADP) 1.1.6 security and bug fix update
Synopsis Moderate: OpenShift API for Data Protection (OADP) 116 security and bug fix update Type/Severity Security Advisory: Moderate Topic OpenShift API for Data Protection (OADP) 116 is now availableRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base ...
Red Hat: Moderate: rhc security, bug fix, and enhancement update
Synopsis Moderate: rhc security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for rhc is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this upd ...
Red Hat: Moderate: OpenShift Container Platform 4.13.1 security and extras update
Synopsis Moderate: OpenShift Container Platform 4131 security and extras update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4131 is now available with updates to packages and images that fix several bugsThis release includes a security update for Red Hat OpenShift Container Platform 413R ...
Red Hat: Important: OpenShift Container Platform 4.12.48 bug fix and security update
Synopsis Important: OpenShift Container Platform 41248 bug fix and security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Container Platform release 41248 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift ...
Red Hat: Moderate: Red Hat build of Cryostat 2.3.0: new RHEL 8 container images
Synopsis Moderate: Red Hat build of Cryostat 230: new RHEL 8 container images Type/Severity Security Advisory: Moderate Topic New Red Hat build of Cryostat 230 on RHEL 8 container images are now available Description New Red Hat build of Cryostat 230 on RHEL 8 container images have been released, adding a variety of features and bug f ...
Red Hat: Moderate: containernetworking-plugins security and bug fix update
Synopsis Moderate: containernetworking-plugins security and bug fix update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 9Red Hat P ...
Red Hat: Moderate: skopeo security update
Synopsis Moderate: skopeo security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for skopeo is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this update as having a secu ...
Red Hat: Moderate: toolbox security and bug fix update
Synopsis Moderate: toolbox security and bug fix update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for toolbox is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this update as ...
Red Hat: Moderate: buildah security update
Synopsis Moderate: buildah security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for buildah is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this update as having a se ...
Red Hat: Moderate: Logging Subsystem 5.7.2 - Red Hat OpenShift security update
Synopsis Moderate: Logging Subsystem 572 - Red Hat OpenShift security update Type/Severity Security Advisory: Moderate Topic Logging Subsystem 572 - Red Hat OpenShiftRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severi ...
Red Hat: Important: OpenShift Container Platform 4.13.0 security update
Synopsis Important: OpenShift Container Platform 4130 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic Red Hat OpenShift Container Platform release 4130 is now available with updates to packages and ima ...
Red Hat: Moderate: ACS 4.1 enhancement and security update
Synopsis Moderate: ACS 41 enhancement and security update Type/Severity Security Advisory: Moderate Topic Updated images are now available for Red Hat Advanced Cluster Security (RHACS) The updated image includes new features and bug fixesRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulner ...
Red Hat: Important: OpenShift Container Platform 4.12.47 security update
Synopsis Important: OpenShift Container Platform 41247 security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Container Platform release 41247 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Container P ...
Red Hat: Important: OpenShift Container Platform 4.13.2 bug fix and security update
Synopsis Important: OpenShift Container Platform 4132 bug fix and security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Container Platform release 4132 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift C ...
Red Hat: Important: Red Hat OpenShift Data Foundation 4.13.0 security and bug fix update
Synopsis Important: Red Hat OpenShift Data Foundation 4130 security and bug fix update Type/Severity Security Advisory: Important Topic Updated images that include numerous enhancements, security, and bug fixes are now available in Red Hat Container Registry for Red Hat OpenShift Data Foundation 4130 on Red Hat Enterprise Linux 9Red Hat ...
Amazon Linux 2: ALAS2NITRO-ENCLAVES-2023-029
http2/hpack: avoid quadratic complexity in hpack decoding (CVE-2022-41723) ...
Amazon Linux 2: ALAS2DOCKER-2023-030
http2/hpack: avoid quadratic complexity in hpack decoding (CVE-2022-41723) ...
Amazon Linux 2: ALAS2-2023-2303
The x/crypto/ssh package before 000-20211202192323-5770296d904e of golangorg/x/crypto allows an attacker to panic an SSH server (CVE-2021-43565) http2/hpack: avoid quadratic complexity in hpack decoding (CVE-2022-41723) Templates did not properly consider backticks (`) as Javascript string delimiters, and as such didnot escape them as expected ...
Amazon Linux 2: ALAS2-2023-2193
http2/hpack: avoid quadratic complexity in hpack decoding (CVE-2022-41723) The HTTP/1 client does not fully validate the contents of the Host header A maliciously crafted Host header can inject additional headers or entire requests With fix, the HTTP/1 client now refuses to send requests containing an invalid RequestHost or RequestURLHost valu ...
Amazon Linux 2: ALAS2NITRO-ENCLAVES-2023-026
http2/hpack: avoid quadratic complexity in hpack decoding (CVE-2022-41723) Large handshake records may cause panics in crypto/tls Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses This affects all TLS 13 clients, TLS 12 clients which expli ...
Amazon Linux 2: ALAS2-2023-2015
Requests forwarded by ReverseProxy include the raw query parameters from the inbound request, including unparseable parameters rejected by net/http This could permit query parameter smuggling when a Go proxy forwards a parameter with an unparseable value After fix, ReverseProxy sanitizes the query parameters in the forwarded query when the outbou ...
Amazon Linux 2: ALAS2-2023-2143
http2/hpack: avoid quadratic complexity in hpack decoding (CVE-2022-41723) ...
Amazon Linux 2: ALAS2-2023-2192
http2/hpack: avoid quadratic complexity in hpack decoding (CVE-2022-41723) ...
Amazon Linux 2: ALAS2-2023-2194
http2/hpack: avoid quadratic complexity in hpack decoding (CVE-2022-41723) The HTTP/1 client does not fully validate the contents of the Host header A maliciously crafted Host header can inject additional headers or entire requests With fix, the HTTP/1 client now refuses to send requests containing an invalid RequestHost or RequestURLHost valu ...
Amazon Linux 2: ALAS2DOCKER-2023-029
http2/hpack: avoid quadratic complexity in hpack decoding (CVE-2022-41723) Large handshake records may cause panics in crypto/tls Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses This affects all TLS 13 clients, TLS 12 clients which expli ...
Amazon Linux 2: ALASGOLANG1.19-2023-002
An out of bounds read vulnerability was found in debug/macho of the Go standard library When using the debug/macho standard library (stdlib) and malformed binaries are parsed using Open or OpenFat, it can cause golang to attempt to read outside of a slice (array) causing a panic when calling ImportedSymbols An attacker can use this vulnerability ...
Amazon Linux 2: ALAS2-2023-2238
The x/crypto/ssh package before 000-20211202192323-5770296d904e of golangorg/x/crypto allows an attacker to panic an SSH server (CVE-2021-43565) A broken cryptographic algorithm flaw was found in golangorg/x/crypto/ssh This issue causes a client to fail authentification with RSA keys to servers that reject signature algorithms based on SHA-2, ...

ICS Advisories

https://ics-cert.us-cert.gov/advisories/0600b443ff4393d097c485fbc8d3ed3b
Critical Infrastructure Sectors: Critical Manufacturing

Github Repositories

https://github.com/knabben/dos-poc

Golang DDoS CVE POC

Golang DoS CVE proof of concept HTTPS/2 Server with vulnerable version of golangorg/x/net, rapid reset attack got to be known last year, impacting multiple big cloud providers and CDNs, with the record of 201MI RPS WARNING: Do not use the example without FIXING the version More on: blogcloudflarecom/technical-breakdown-http2-rapid-reset-ddos-attack Scanner results:

https://github.com/kyverno/policy-reporter-plugins

Policy Reporter Plugins Monorepo

Policy Reporter Plugins Monorepo Introduction With Policy Reporter UI v2 a new plugin system will be introduced While plugins in v1 were only used for integrating the Policy Reporter Kyverno Plugin, the new system will be more generic and needs to provide a defined set of REST APIs, no actual UI changes are required Plugin information will be included in existing views and pr

References

NVD-CWE-Otherhttps://go.dev/cl/468135https://go.dev/issue/57855https://go.dev/cl/468295https://pkg.go.dev/vuln/GO-2023-1571https://groups.google.com/g/golang-announce/c/V0aBFqaFs_Ehttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4MA5XS5DAOJ5PKKNG5TUXKPQOFHT5VBC/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RLBQ3A7ROLEQXQLXFDLNJ7MYPKG5GULE/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RGW7GE2Z32ZT47UFAQFDRQE33B7Q7LMT/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XX3IMUTZKRQ73PBZM4E2JP4BKYH4C6XE/https://www.couchbase.com/alerts/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4BUK2ZIAGCULOOYDNH25JPU6JBES5NF2/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T7N5GV4CHH6WAGX3GFMDD3COEOVCZ4RI/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/REMHVVIBDNKSRKNOTV7EQSB7CYQWOUOU/https://security.gentoo.org/glsa/202311-09https://nvd.nist.govhttps://github.com/knabben/dos-pochttps://www.cisa.gov/news-events/ics-advisories/icsa-24-046-11https://alas.aws.amazon.com/ALAS-2023-1881.htmlhttps://alas.aws.amazon.com/ALAS-2023-1866.html
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook