Search for vulnerabilities
Vulnerability details: VCID-3wwu-xjd7-aaah
Vulnerability ID VCID-3wwu-xjd7-aaah
Aliases CVE-2024-35200
Summary NULL pointer dereference in HTTP/3
Status Published
Exploitability 0.5
Weighted Severity 6.8
Risk 3.4
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-476 NULL Pointer Dereference
System Score Found at
cvssv3 7.5 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-35200.json
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00329 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00329 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00329 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00329 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00329 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00329 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00329 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00329 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.0063 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.0063 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.00666 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.01248 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.01248 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.01248 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.01248 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.01248 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.01248 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.01248 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.01248 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.01248 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.01248 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.01248 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.01248 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
epss 0.0433 https://api.first.org/data/v1/epss?cve=CVE-2024-35200
cvssv3.1 5.3 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
generic_textual medium https://mailman.nginx.org/pipermail/nginx-announce/2024/GMY32CSHFH6VFTN76HJNX7WNEX4RLHF6.html
cvssv3.1 5.3 https://nvd.nist.gov/vuln/detail/CVE-2024-35200
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-35200.json
https://api.first.org/data/v1/epss?cve=CVE-2024-35200
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MLAOKJWDALQZBIV3WKGPJ6T5Z56D3PRD/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R7RPLWC35WHEUFCGKNFG62ESNID25TEZ/
https://mailman.nginx.org/pipermail/nginx-announce/2024/GMY32CSHFH6VFTN76HJNX7WNEX4RLHF6.html
https://my.f5.com/manage/s/article/K000139612
http://www.openwall.com/lists/oss-security/2024/05/30/4
2283919 https://bugzilla.redhat.com/show_bug.cgi?id=2283919
cpe:2.3:a:f5:nginx_open_source:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:f5:nginx_open_source:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:nginx_plus:r30:-:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:f5:nginx_plus:r30:-:*:*:*:*:*:*
cpe:2.3:a:f5:nginx_plus:r30:p1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:f5:nginx_plus:r30:p1:*:*:*:*:*:*
cpe:2.3:a:f5:nginx_plus:r30:p2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:f5:nginx_plus:r30:p2:*:*:*:*:*:*
cpe:2.3:a:f5:nginx_plus:r31:-:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:f5:nginx_plus:r31:-:*:*:*:*:*:*
cpe:2.3:a:f5:nginx_plus:r31:p1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:f5:nginx_plus:r31:p1:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*
CVE-2024-35200 https://nvd.nist.gov/vuln/detail/CVE-2024-35200
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-35200.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Found at https://nvd.nist.gov/vuln/detail/CVE-2024-35200
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.16666
EPSS Score 0.00045
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
2024-05-29T16:17:01.550132+00:00 Nginx Importer Import https://nginx.org/en/security_advisories.html 34.0.0rc4