Known Vulnerabilities for products from Dena
Listed below are 14 of the newest known vulnerabilities associated with the vendor "Dena".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-44487 json | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many stre... | 7.5 - HIGH | 2023-10-10 | 2024-02-02 |
| CVE-2023-30847 json | H2O is an HTTP server. In versions 2.3.0-beta2 and prior, when the reverse proxy handler tries to processes a certain type of... | 8.2 - HIGH | 2023-04-27 | 2023-05-09 |
| CVE-2022-29482 json | 'Mobaoku-Auction&Flea Market' App for iOS versions prior to 5.5.16 improperly verifies server certificates, which may allow a... | 3.7 - LOW | 2022-06-14 | 2022-06-23 |
| CVE-2021-43848 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.9 - MEDIUM | 2022-02-01 | 2022-02-07 |
| CVE-2018-0608 json | Buffer overflow in H2O version 2.2.4 and earlier allows remote attackers to execute arbitrary code or cause a denial of servi... | 9.8 - CRITICAL | 2018-06-26 | 2021-04-19 |
| CVE-2017-10908 json | H2O version 2.2.3 and earlier allows remote attackers to cause a denial of service in the server via specially crafted HTTP/2... | 7.5 - HIGH | 2017-12-22 | 2021-04-19 |
| CVE-2017-10872 json | H2O version 2.2.3 and earlier allows remote attackers to cause a denial of service in the server via unspecified vectors. | 6.5 - MEDIUM | 2017-12-22 | 2021-04-19 |
| CVE-2017-10869 json | Buffer overflow in H2O version 2.2.2 and earlier allows remote attackers to cause a denial-of-service in the server via unspe... | 7.5 - HIGH | 2017-12-22 | 2021-04-19 |
| CVE-2017-10868 json | H2O version 2.2.2 and earlier allows remote attackers to cause a denial of service in the server via specially crafted HTTP/1... | 7.5 - HIGH | 2017-12-22 | 2021-08-12 |
| CVE-2016-7835 json | Use-after-free vulnerability in H2O allows remote attackers to cause a denial-of-service (DoS) or obtain server certificate p... | 9.1 - CRITICAL | 2017-06-09 | 2021-04-19 |
| CVE-2016-4864 json | H2O versions 2.0.3 and earlier and 2.1.0-beta2 and earlier allows remote attackers to cause a denial-of-service (DoS) via for... | 7.5 - HIGH | 2017-05-12 | 2019-02-26 |
| CVE-2016-4817 json | lib/http2/connection.c in H2O before 1.7.3 and 2.x before 2.0.0-beta5 mishandles HTTP/2 disconnection, which allows remote at... | 7.5 - HIGH | 2016-06-19 | 2021-04-19 |
| CVE-2016-1133 json | CRLF injection vulnerability in the on_req function in lib/handler/redirect.c in H2O before 1.6.2 and 1.7.x before 1.7.0-beta... | 3.7 - LOW | 2016-01-16 | 2021-04-19 |
| CVE-2015-5638 json | Directory traversal vulnerability in H2O before 1.4.5 and 1.5.x before 1.5.0-beta2, when the file.dir directive is enabled, a... | 4.3 - MEDIUM | 2015-09-20 | 2015-09-23 |
Known software with vulnerabilities from Dena
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Dena | H2o | 0.9.0 |