Description
Tempesta FW rate limits are not enabled by default. They are either set too large to capture empty CONTINUATION frames attacks or too small to handle normal HTTP requests appropriately.
Published: 2024-04-03
Score: 6.3 Medium
EPSS: 72.8% High
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2024-27702 Tempesta FW rate limits are not enabled by default. They are either set too large to capture empty CONTINUATION frames attacks or too small to handle normal HTTP requests appropriately.
History

Wed, 28 May 2025 17:00:00 +0000

Type Values Removed Values Added
References

Thu, 22 May 2025 02:45:00 +0000


Wed, 30 Oct 2024 19:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: certcc

Published:

Updated: 2025-02-13T17:46:31.765Z

Reserved: 2024-03-21T12:31:11.759Z

Link: CVE-2024-2758

cve-icon Vulnrichment

Updated: 2024-08-01T19:25:41.425Z

cve-icon NVD

Status : Deferred

Published: 2024-04-03T18:15:07.380

Modified: 2026-06-17T07:25:29.240

Link: CVE-2024-2758

cve-icon Redhat

Severity : Important

Publid Date: 2024-04-03T00:00:00Z

Links: CVE-2024-2758 - Bugzilla

cve-icon OpenCVE Enrichment

No data.

Weaknesses

No weakness.