Skip to main content

Quic Go

3 CVEs product

Monthly

CVE-2023-49295 Go MEDIUM PATCH This Month

quic-go is an implementation of the QUIC protocol (RFC 9000, RFC 9001, RFC 9002) in Go. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable. This Uncontrolled Resource Consumption vulnerability could allow attackers to cause denial of service by exhausting system resources.

Denial Of Service Quic Go
NVD GitHub
CVSS 3.1
6.4
EPSS
1.8%
CVE-2023-46239 Go HIGH PATCH This Week

quic-go is an implementation of the QUIC protocol in Go. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Quic Go
NVD GitHub
CVSS 3.1
7.5
EPSS
0.8%
CVE-2022-30591 HIGH POC This Week

quic-go through 0.27.0 allows remote attackers to cause a denial of service (CPU consumption) via a Slowloris variant in which incomplete QUIC or HTTP/3 requests are sent. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Quic Go
NVD GitHub
CVSS 3.1
7.5
EPSS
2.8%
EPSS 2% CVSS 6.4
MEDIUM PATCH This Month

quic-go is an implementation of the QUIC protocol (RFC 9000, RFC 9001, RFC 9002) in Go. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable. This Uncontrolled Resource Consumption vulnerability could allow attackers to cause denial of service by exhausting system resources.

Denial Of Service Quic Go
NVD GitHub
EPSS 1% CVSS 7.5
HIGH PATCH This Week

quic-go is an implementation of the QUIC protocol in Go. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Quic Go
NVD GitHub
EPSS 3% CVSS 7.5
HIGH POC This Week

quic-go through 0.27.0 allows remote attackers to cause a denial of service (CPU consumption) via a Slowloris variant in which incomplete QUIC or HTTP/3 requests are sent. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Quic Go
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy