CVE-2024-34161
CVSS v3.1
5.3 (Medium)
EPSS
0.04 % (16th)
Advisories
4
NVD Status
Awaiting Analysis
When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module and the network infrastructure supports a Maximum Transmission Unit (MTU) of 4096 or greater without fragmentation, undisclosed QUIC packets can cause NGINX worker processes to leak previously freed memory.
Weaknesses
- CWE-416
- Use After Free
- CVE Status
- PUBLISHED
- NVD Status
- Awaiting Analysis
- CNA
- F5 Networks
- Published Date
-
2024-05-29 16:15:10
(3 months ago) - Updated Date
-
2024-06-10 18:15:34
(3 months ago)
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...