McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9511, potentially leading to a denial of service. This affects the scanning proxies.

CPENameOperatorVersion
active_responseeq2.0.1
active_responseeq2.1
active_responseeq2.2
active_responseeq2.3
active_responseeq2.4
active_responseeq2.0
active_responseeq1.0.0
active_responseeq1.1.0
advanced_threat_defenseeq4.0
advanced_threat_defenseeq4.2

Name	Operator	Version
active_response	eq	2.0.1
active_response	eq	2.1
active_response	eq	2.2
active_response	eq	2.3
active_response	eq	2.4
active_response	eq	2.0
active_response	eq	1.0.0
active_response	eq	1.1.0
advanced_threat_defense	eq	4.0
advanced_threat_defense	eq	4.2

Rows per page:

1-10 of 271

References

kc.mcafee.com/corporate/index?page=content&id=SB10296

nvd 2

cvelist 2

cve 2

nginx 1

openvas 35

mscve 1

ubuntucve 1

nessus 60

veracode 1

prion 1

redhatcve 1

symantec 2

alpinelinux 1

debiancve 1

cbl_mariner 1

osv 8

fedora 9

freebsd 2

redhat 14

ibm 12

debian 3

suse 6

archlinux 3

mageia 2

amazon 4

oraclelinux 8

rocky 1

photon 1

ubuntu 3

almalinux 2

hackerone 1

f5 1

githubexploit 1

altlinux 1

thn 1

nodejsblog 1

myhack58 1

threatpost 1

cloudfoundry 1

nvd

CVE-2019-3643

2019-09-11 15:15:11

CVE-2019-9511

2019-08-13 21:15:12

cvelist

CVE-2019-3643 MWG scanners updated to address CVE-2019-9511

2019-09-11 14:08:19

CVE-2019-9511 Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service

2019-08-13 20:50:59

cve

CVE-2019-3643

2019-09-11 15:15:11

CVE-2019-9511

2019-08-13 21:15:12

nginx

Excessive CPU usage in HTTP/2 with small window updates

2019-08-13 21:15:12

openvas

Huawei EulerOS: Security Advisory for nghttp2 (EulerOS-SA-2019-2083)

2020-01-23 00:00:00

SUSE: Security Advisory (SUSE-SU-2019:2473-1)

2021-06-09 00:00:00

openSUSE: Security Advisory for nghttp2 (openSUSE-SU-2019:2234-1)

2019-10-02 00:00:00

mscve

HTTP/2 Server Denial of Service Vulnerability

2019-08-13 07:00:00

ubuntucve

CVE-2019-9511

2019-08-13 00:00:00

nessus

EulerOS 2.0 SP8 : nghttp2 (EulerOS-SA-2019-2083)

2019-09-30 00:00:00

RHEL 7 / 8 : Red Hat OpenShift Service Mesh 1.0.1 RPMs (Important) (RHSA-2019:3041)

2019-10-16 00:00:00

SUSE SLED15 / SLES15 Security Update : nghttp2 (SUSE-SU-2019:2473-1) (Data Dribble) (Resource Loop)

2019-09-27 00:00:00

veracode

Denial Of Service (DoS)

2019-09-13 00:40:24

prion

Code injection

2019-08-13 21:15:00

redhatcve

CVE-2019-9511

2020-11-01 17:54:29

symantec

Microsoft Windows 'HTTP.sys' CVE-2019-9511 Denial of Service Vulnerability

2019-08-13 00:00:00

Nginx Vulnerabilities Jul 2017 - Oct 2019

2020-05-06 18:48:22

alpinelinux

CVE-2019-9511

2019-08-13 21:15:12

debiancve

CVE-2019-9511

2019-08-13 21:15:12

cbl_mariner

CVE-2019-9511 affecting package nginx 1.16.1-2

2021-06-14 15:32:58

osv

CVE-2019-9511

2019-08-13 21:15:12

nghttp2 - security update

2019-09-01 00:00:00

nginx - security update

2019-08-22 00:00:00

fedora

[SECURITY] Fedora 30 Update: nghttp2-1.40.0-1.fc30

2020-02-23 01:09:35

[SECURITY] Fedora 29 Update: nghttp2-1.39.2-1.fc29

2019-08-27 18:38:08

[SECURITY] Fedora 30 Update: nghttp2-1.39.2-1.fc30

2019-08-23 01:27:34

freebsd

nghttp2 -- multiple vulnerabilities

2019-08-13 00:00:00

NGINX -- Multiple vulnerabilities

2019-08-13 00:00:00

redhat

(RHSA-2019:2692) Important: nghttp2 security update

2019-09-09 18:39:39

(RHSA-2019:3041) Important: Red Hat OpenShift Service Mesh 1.0.1 RPMs

2019-10-14 16:45:27

(RHSA-2019:2799) Important: nginx:1.14 security update

2019-09-17 08:45:10

ibm

Security Bulletin: IBM MQ Appliance affected by HTTP/2 vulnerabilities (CVE-2019-9511 and CVE-2019-9513)

2020-01-27 10:37:46

Security Bulletin: IBM DataPower Gateway is affected by Denial of Service vulnerabilities

2021-06-08 21:47:38

Security Bulletin: Multiple Security Vulnerabilities affect IBM Cloud Private Kubernetes

2019-11-23 16:58:10

debian

[SECURITY] [DSA 4511-1] nghttp2 security update

2019-09-01 21:08:06

[SECURITY] [DSA 4505-1] nginx security update

2019-08-22 19:38:21

[SECURITY] [DSA 4669-1] nodejs security update

2020-04-29 21:05:57

suse

Security update for nghttp2 (moderate)

2019-10-01 00:00:00

Security update for nghttp2 (moderate)

2019-10-01 00:00:00

Security update for nginx (moderate)

2019-10-06 00:00:00

archlinux

[ASA-201908-17] libnghttp2: denial of service

2019-08-27 00:00:00

[ASA-201908-13] nginx: denial of service

2019-08-16 00:00:00

[ASA-201908-12] nginx-mainline: denial of service

2019-08-16 00:00:00

mageia

Updated nghttp2 packages fix security vulnerabilities

2019-09-28 04:05:09

Updated nginx packages fix security vulnerabilities

2019-11-30 16:06:06

amazon

Important: nghttp2

2019-10-08 21:43:00

Important: nghttp2

2019-09-30 21:03:00

Important: mod_http2

2019-10-28 17:43:00

oraclelinux

nghttp2 security update

2019-09-10 00:00:00

olcne nginx security update

2020-09-28 00:00:00

nginx:1.14 security update

2019-09-19 00:00:00

rocky

nginx:1.14 security update

2019-09-17 08:45:10

photon

Important Photon OS Security Update - PHSA-2023-4.0-0342

2023-02-28 00:00:00

ubuntu

nginx vulnerabilities

2019-08-15 00:00:00

nghttp2 vulnerability

2024-05-07 00:00:00

nghttp2 vulnerabilities

2024-04-25 00:00:00

almalinux

Important: nginx:1.14 security update

2019-09-17 08:45:10

Important: nodejs:10 security update

2019-09-30 07:07:29

hackerone

Localize: Nginx version is disclosed in HTTP response

2020-01-26 21:54:31

K02591030 : HTTP/2 vulnerabilities CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, and CVE-2019-9517

2019-08-20 00:00:00

githubexploit

Exploit for Uncontrolled Resource Consumption in F5 Nginx

2020-12-22 10:16:11

altlinux

Security fix for the ALT Linux 10 package node version 10.16.3-alt1

2019-08-30 00:00:00

thn

8 New HTTP/2 Implementation Flaws Expose Websites to DoS Attacks

2019-08-14 08:19:00

nodejsblog

August 2019 Security Releases

2019-08-16 00:00:00

myhack58

HTTP/2 denial of service attack vulnerability alerts-a vulnerability alert-the black bar safety net

2019-08-14 00:00:00

threatpost

HTTP Bugs Open Websites to DoS Attacks

2019-08-15 19:20:38

cloudfoundry

Various HTTP2 CVEs: Some Cloud Foundry products are impacted by HTTP denial of service attacks | Cloud Foundry

2019-12-03 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7.4 High

AI Score

Confidence

High

0.097 Low

EPSS

Percentile

94.8%

JSON

Related for PRION:CVE-2019-3643