Every CVE whose affected-product data names Facebook Fizz, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2019-11924 — CVSS 7.5 (high): A peer could send empty handshake fragments containing only padding which would be kept in memory until a full handshake was received…
CVE-2019-3560 — CVSS 7.5 (high): An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an infinite loop and denial-of-service based…
CVE-2023-23759 — CVSS 7.5 (high): There is a vulnerability in the fizz library prior to v2023.01.30.00 where a CHECK failure can be triggered remotely. This behavior…