CVE-2024-25678
CRITICALDescription
In LiteSpeed QUIC (LSQUIC) Library before 4.0.4, DCID validation is mishandled.
Is your site exposed to CVE-2024-25678?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| litespeedtech | lsquic |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2024-25678? +
How severe is CVE-2024-25678? +
What products are affected by CVE-2024-25678? +
How do I check if I'm vulnerable to CVE-2024-25678? +
Related Vulnerabilities
A security issue exists within 1769 CompactLogix controllers due to the missing validation of sequence numbers and source IP addresses …
Netskope has identified a potential gap in its agent (Netskope Client) in which a malicious insider can potentially tamper the …
secp256k1-node is a Node.js binding for an Optimized C library for EC operations on curve secp256k1. In `elliptic`-based version, `loadUncompressedPublicKey` …
An insufficient validation of an untrusted input vulnerability in Palo Alto Networks Prisma® Browser allows a locally authenticated non-admin user …
Improper Validation of Integrity Check Value vulnerability in Sharp Display Solutions projectors allows a attacker may create and run unauthorized …
jwe is a Ruby implementation of the RFC 7516 JSON Web Encryption (JWE) standard. In versions 1.1.0 and below, authentication …