exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 9

CVE-2024-23327

больше 2 лет назад

Envoy is a high-performance edge/middle/service proxy. When PPv2 is enabled both on a listener and subsequent cluster, the Envoy instance will segfault when attempting to craft the upstream PPv2 header. This occurs when the downstream request has a command type of LOCAL and does not have the protocol block. This issue has been addressed in releases 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.

CVSS3: 7.5

EPSS: Низкий

CVE-2024-23327

больше 2 лет назад

CVSS3: 7.5

EPSS: Низкий

CVE-2024-23327

больше 2 лет назад

Envoy is a high-performance edge/middle/service proxy. When PPv2 is en ...

CVSS3: 7.5

EPSS: Низкий

BDU:2024-02907

больше 2 лет назад

Уязвимость прокси-сервера Envoy, связанная с ошибками разыменования указателей, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 7.5

EPSS: Низкий

ELSA-2024-12348

около 2 лет назад

ELSA-2024-12348: cri-o security update (IMPORTANT)

EPSS: Низкий

ELSA-2024-12347

около 2 лет назад

ELSA-2024-12347: cri-o security update (IMPORTANT)

EPSS: Низкий

ELSA-2024-12329

около 2 лет назад

ELSA-2024-12329: cri-o security update (IMPORTANT)

EPSS: Низкий

ELSA-2024-12328

около 2 лет назад

ELSA-2024-12328: cri-o security update (IMPORTANT)

EPSS: Низкий

ROS-20240423-06

около 2 лет назад

Множественные уязвимости consul

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-23327 Envoy is a high-performance edge/middle/service proxy. When PPv2 is enabled both on a listener and subsequent cluster, the Envoy instance will segfault when attempting to craft the upstream PPv2 header. This occurs when the downstream request has a command type of LOCAL and does not have the protocol block. This issue has been addressed in releases 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.	CVSS3: 7.5	1% Низкий	больше 2 лет назад
CVE-2024-23327 Envoy is a high-performance edge/middle/service proxy. When PPv2 is enabled both on a listener and subsequent cluster, the Envoy instance will segfault when attempting to craft the upstream PPv2 header. This occurs when the downstream request has a command type of LOCAL and does not have the protocol block. This issue has been addressed in releases 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.	CVSS3: 7.5	1% Низкий	больше 2 лет назад
CVE-2024-23327 Envoy is a high-performance edge/middle/service proxy. When PPv2 is en ...	CVSS3: 7.5	1% Низкий	больше 2 лет назад
BDU:2024-02907 Уязвимость прокси-сервера Envoy, связанная с ошибками разыменования указателей, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 7.5	1% Низкий	больше 2 лет назад
ELSA-2024-12348 ELSA-2024-12348: cri-o security update (IMPORTANT)			около 2 лет назад
ELSA-2024-12347 ELSA-2024-12347: cri-o security update (IMPORTANT)			около 2 лет назад
ELSA-2024-12329 ELSA-2024-12329: cri-o security update (IMPORTANT)			около 2 лет назад
ELSA-2024-12328 ELSA-2024-12328: cri-o security update (IMPORTANT)			около 2 лет назад
ROS-20240423-06 Множественные уязвимости consul	CVSS3: 7.5		около 2 лет назад

Уязвимостей на страницу