Varnish Cache

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2025-30346 MEDIUM PATCH This Month

Varnish Cache before 7.6.2 and Varnish Enterprise before 6.0.13r10 allow client-side desync via HTTP/1 requests. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Red Hat Request Smuggling Suse Varnish Enterprise +1

NVD

CVSS 3.1

5.4

EPSS

0.2%

CVE-2025-30346

EPSS 0% CVSS 5.4

MEDIUM PATCH This Month

Varnish Cache before 7.6.2 and Varnish Enterprise before 6.0.13r10 allow client-side desync via HTTP/1 requests. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Red Hat Request Smuggling +3

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy