CVE-2013-3587
- EPSS 14.66%
- Published 21.02.2020 18:15:11
- Last modified 21.11.2024 01:53:56
The HTTPS protocol, as used in unspecified web applications, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which makes it easier for man-in-the-middle attackers to obtain plaintext secret values by obser...
- EPSS 27.65%
- Published 03.01.2018 06:29:00
- Last modified 03.01.2025 12:15:25
The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other im...
CVE-2014-2927
- EPSS 7.43%
- Published 15.10.2014 14:55:06
- Last modified 12.04.2025 10:46:40
The rsync daemon in F5 BIG-IP 11.6 before 11.6.0, 11.5.1 before HF3, 11.5.0 before HF4, 11.4.1 before HF4, 11.4.0 before HF7, 11.3.0 before HF9, and 11.2.1 before HF11 and Enterprise Manager 3.x before 3.1.1 HF2, when configured in failover mode, doe...
CVE-2011-3188
- EPSS 2.3%
- Published 24.05.2012 23:55:02
- Last modified 11.04.2025 00:51:21
The (1) IPv4 and (2) IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote attackers to cause a denial of service (disrupted ...