Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Package Hub 15 SP4 package varnish, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2022-38150 — CVSS 7.5 (high): In Varnish Cache 7.0.0, 7.0.1, 7.0.2, and 7.1.0, it is possible to cause the Varnish Server to assert and automatically restart through…
CVE-2022-45059 — CVSS 7.5 (high): An issue was discovered in Varnish Cache 7.x before 7.1.2 and 7.2.x before 7.2.1. A request smuggling attack can be performed on Varnish…
CVE-2022-45060 — CVSS 7.5 (high): An HTTP Request Forgery issue was discovered in Varnish Cache 5.x and 6.x before 6.0.11, 7.x before 7.1.2, and 7.2.x before 7.2.1. An…
CVE-2021-4122 — CVSS 4.3 (medium): It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. An…