Google gRPC before 2017-03-29 has an out-of-bounds write caused by a heap-based use-after-free related to the grpc_call_destroy function in core/lib/surface/call.c.Read More ...
Continue Reading
June 30, 2023
github.com/andreimatei/grpc-go is vulnerable to denial of service (DoS) attacks. A malicious user can send an empty hpack string to the system and cause it to crash.Read More ...
Continue Reading
June 30, 2023
According to its self-reported version and configuration, the Cisco IOS XR software running on the remote device is affected by a denial of service vulnerability in the Event Management Service daemon ...
Continue Reading
June 30, 2023
Gitlab reports: SSRF GCP access token disclosure Persistent XSS on issue details Diff formatter DoS in Sidekiq jobs Confidential information disclosure in events API endpoint validate_localhost functi ...
Continue Reading
June 30, 2023
Gitlab reports : SSRF GCP access token disclosure Persistent XSS on issue details Diff formatter DoS in Sidekiq jobs Confidential information disclosure in events API endpoint validate_localhost funct ...
Continue Reading
June 30, 2023
Envoy, the new darling of the DevOps community, performs the role of a service and edge proxy. With advanced features such as timeouts, rate limiting, circuit breaking, load balancing, retries, stats, ...
Continue Reading
June 30, 2023
etcd versions 3.2.x before 3.2.26 and 3.3.x before 3.3.11 are vulnerable to an improper authentication issue when role-based access control (RBAC) is used and client-cert-auth is enabled. If an etcd c ...
Continue Reading
June 30, 2023
Project: https://github.com/grpc/grpc.git Detailed report: https://oss-fuzz.com/testcase?key=5752853455437824 Project: grpc Fuzzer: libFuzzer_grpc_api_fuzzer Fuzz target binary: api_fuzzer Job Type: l ...
Continue Reading
June 30, 2023
Back to Main
