搜索结果
关于「h2o」的漏洞数据
| AVD编号 | 漏洞名称 | 漏洞类型 | 披露时间 | 漏洞状态 |
|---|---|---|---|---|
| AVD-2024-45403 | HTTP/3 请求取消时 H2O 断言失败(CVE-2024-45403) | 2024-10-11 | ||
| AVD-2024-45397 | H2O 允许使用 0-RTT 绕过基于地址的访问控制(CVE-2024-45397) | 2024-10-11 | ||
| AVD-2024-25622 | H2O 忽略标头配置指令(CVE-2024-25622) | 2024-10-11 | ||
| AVD-2024-8862 | h2oai h2o-3 JDBC 连接 1 getConnectionSafe 反序列化(CVE-2024-8862) | 2024-09-15 | ||
| AVD-2024-5550 | 通过 h2oai/h2o-3 中的任意系统路径查找泄露敏感信息(CVE-2024-5550) | 2024-06-07 | ||
| AVD-2023-6569 | h2oai/h2o-3 中文件名或路径的外部控制 (CVE-2023-6569) | 2023-12-14 | ||
| AVD-2023-50247 | h2o QUIC 状态耗尽 DoS (CVE-2023-50247) | 2023-12-13 | ||
| AVD-2023-41337 | h2o 容易受到 TLS 会话恢复误导的影响 (CVE-2023-41337) | 2023-12-13 | ||
| AVD-2023-6038 | H2O 本地文件包含 (CVE-2023-6038) | 2023-11-17 | ||
| AVD-2023-6017 | H2O S3 桶接管 (CVE-2023-6017) | 2023-11-17 | ||
| AVD-2023-6013 | H2O 本地文件包含 (CVE-2023-6013) | 2023-11-17 | ||
| AVD-2023-6016 | 通过 POJO 模型导入进行 H2O 远程代码执行 (CVE-2023-6016) | 2023-11-17 | ||
| AVD-2023-44487 | HTTP/2 Rapid Reset 拒绝服务漏洞 (CVE-2023-44487) | 2023-10-13 | ||
| AVD-2023-30847 | H2O 拒绝服务漏洞(CVE-2023-30847) | 2023-04-27 | ||
| AVD-2021-43848 | dena h2o 对未经初始化资源的使用 | 2022-02-01 | ||
| AVD-2019-9515 | HTTP2 SETTING Frame Flooding 拒绝服务漏洞 | 2019-08-14 | ||
| AVD-2017-1090 | ** REJECT ** | 2019-03-06 | ||
| AVD-2018-0608 | H2O缓冲区溢出漏洞(CNVD-2018-16256) | 2018-06-27 | ||
| AVD-2017-10908 | H2O up to 2.2.3 HTTP2 Header 拒绝服务漏洞 | 2017-12-23 | ||
| AVD-2017-10872 | H2O up to 2.2.3 拒绝服务漏洞 | 2017-12-23 | ||
| AVD-2017-10869 | H2O up to 2.2.2 拒绝服务漏洞 | 2017-12-23 | ||
| AVD-2017-10868 | H2O up to 2.2.2 HTTP1 Header 拒绝服务漏洞 | 2017-12-23 | ||
| AVD-2017-1087 | FreeBSD本地权限提升漏洞(CNVD-2017-37250) | 2017-11-17 | ||
| AVD-2016-7835 | H2O拒绝服务漏洞 | 2017-06-10 | ||
| AVD-2016-4864 | h2o 漏洞 | 2017-05-13 | ||
| AVD-2016-4817 | H2O up to 1.7.2/2.0.0-beta4 HTTP2 Connection lib/http2/connection.c UAF漏洞 | 2016-06-19 | ||
| AVD-2016-1133 | H2O CRLF注入漏洞 | 2016-01-16 | ||
| AVD-2015-5638 | H2O目录遍历漏洞 | 2015-09-21 |