Vulnerabilities (CVE)

Filtered by vendor Zeek Subscribe
Filtered by product Zeek
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-41732 1 Zeek 1 Zeek 2024-11-21 5.0 MEDIUM 7.5 HIGH
** DISPUTED ** An issue was discovered in zeek version 4.1.0. There is a HTTP request splitting vulnerability that will invalidate any ZEEK HTTP based security analysis. NOTE: the vendor's position is that the observed behavior is intended.
CVE-2019-12175 1 Zeek 1 Zeek 2024-11-21 5.0 MEDIUM 7.5 HIGH
In Zeek Network Security Monitor (formerly known as Bro) before 2.6.2, a NULL pointer dereference in the Kerberos (aka KRB) protocol parser leads to DoS because a case-type index is mishandled.