ReportizFlow
Filtered by vendor Libsoup
Subscriptions
Filtered by product Libsoup
Subscriptions
Total
8 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-3099 | 2 Libsoup, Redhat | 2 Libsoup, Enterprise Linux | 2026-03-13 | 5.8 Medium |
| A flaw was found in Libsoup. The server-side digest authentication implementation in the SoupAuthDomainDigest class does not properly track issued nonces or enforce the required incrementing nonce-count (nc) attribute. This vulnerability allows a remote attacker to capture a single valid authentication header and replay it repeatedly. Consequently, the attacker can bypass authentication and gain unauthorized access to protected resources, impersonating the legitimate user. | ||||
| CVE-2026-2436 | 1 Libsoup | 1 Libsoup | 2026-03-12 | 6.5 Medium |
| No description is available for this CVE. | ||||
| CVE-2026-3632 | 1 Libsoup | 1 Libsoup | 2026-03-09 | 3.9 Low |
| No description is available for this CVE. | ||||
| CVE-2026-3633 | 1 Libsoup | 1 Libsoup | 2026-03-09 | 3.9 Low |
| No description is available for this CVE. | ||||
| CVE-2026-3634 | 1 Libsoup | 1 Libsoup | 2026-03-09 | 3.9 Low |
| No description is available for this CVE. | ||||
| CVE-2026-2708 | 1 Libsoup | 1 Libsoup | 2026-02-20 | 3.7 Low |
| No description is available for this CVE. | ||||
| CVE-2026-2369 | 1 Libsoup | 1 Libsoup | 2026-02-12 | 6.5 Medium |
| No description is available for this CVE. | ||||
| CVE-2006-5876 | 1 Libsoup | 1 Libsoup | 2025-04-09 | N/A |
| The soup_headers_parse function in soup-headers.c for libsoup HTTP library before 2.2.99 allows remote attackers to cause a denial of service (crash) via malformed HTTP headers, probably involving missing fields or values. | ||||
Page 1 of 1.