This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Varnish-Software First view 2017-08-04
Product Varnish Cache Last view 2022-11-09
Version 4.1.4 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:varnish-software:varnish_cache

Activity : Overall

Related : CVE

  Date Alert Description
7.5 2022-11-09 CVE-2022-45060

An HTTP Request Forgery issue was discovered in Varnish Cache 5.x and 6.x before 6.0.11, 7.x before 7.1.2, and 7.2.x before 7.2.1. An attacker may introduce characters through HTTP/2 pseudo-headers that are invalid in the context of an HTTP/1 request line, causing the Varnish server to produce invalid HTTP/1 requests to the backend. This could, in turn, be used to exploit vulnerabilities in a server behind the Varnish server. Note: the 6.0.x LTS series (before 6.0.11) is affected.

9.1 2022-01-26 CVE-2022-23959

In Varnish Cache before 6.6.2 and 7.x before 7.0.2, Varnish Cache 6.0 LTS before 6.0.10, and and Varnish Enterprise (Cache Plus) 4.1.x before 4.1.11r6 and 6.0.x before 6.0.9r4, request smuggling can occur for HTTP/1 connections.

6.5 2021-07-14 CVE-2021-36740

Varnish Cache, with HTTP/2 enabled, allows request smuggling and VCL authorization bypass via a large Content-Length header for a POST request. This affects Varnish Enterprise 6.0.x before 6.0.8r3, and Varnish Cache 5.x and 6.x before 6.5.2, 6.6.x before 6.6.1, and 6.0 LTS before 6.0.8.

7.5 2020-04-08 CVE-2020-11653

An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3.x before 6.3.2. It occurs when communication with a TLS termination proxy uses PROXY version 2. There can be an assertion failure and daemon restart, which causes a performance loss.

7.5 2020-04-08 CVE-2019-20637

An issue was discovered in Varnish Cache before 6.0.5 LTS, 6.1.x and 6.2.x before 6.2.2, and 6.3.x before 6.3.1. It does not clear a pointer between the handling of one client request and the next request within the same connection. This sometimes causes information to be disclosed from the connection workspace, such as data structures associated with previous requests within this connection or VCL-related temporary headers.

7.5 2019-09-03 CVE-2019-15892

An issue was discovered in Varnish Cache before 6.0.4 LTS, and 6.1.x and 6.2.x before 6.2.1. An HTTP/1 parsing failure allows a remote attacker to trigger an assert by sending crafted HTTP/1 requests. The assert will cause an automatic restart with a clean cache, which makes it a Denial of Service attack.

7.5 2017-08-04 CVE-2017-12425

An issue was discovered in Varnish HTTP Cache 4.0.1 through 4.0.4, 4.1.0 through 4.1.7, 5.0.0, and 5.1.0 through 5.1.2. A wrong if statement in the varnishd source code means that particular invalid requests from the client can trigger an assert, related to an Integer Overflow. This causes the varnishd worker process to abort and restart, losing the cached contents in the process. An attacker can therefore crash the varnishd worker process on demand and effectively keep it from serving content - a Denial-of-Service attack. The specific source-code filename containing the incorrect statement varies across releases.

CWE : Common Weakness Enumeration

%idName
33% (2) CWE-617 Reachable Assertion
33% (2) CWE-444 Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggli...
16% (1) CWE-212 Improper Cross-boundary Removal of Sensitive Data
16% (1) CWE-190 Integer Overflow or Wraparound

Nessus® Vulnerability Scanner

id Description
2017-08-15 Name: The remote Fedora host is missing a security update.
File: fedora_2017-8f4fba5afa.nasl - Type: ACT_GATHER_INFO
2017-08-15 Name: The remote Fedora host is missing a security update.
File: fedora_2017-bfbc5de1b1.nasl - Type: ACT_GATHER_INFO
2017-08-03 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-3924.nasl - Type: ACT_GATHER_INFO