Known vulnerabilities in Varnish Software Varnish Cache

Vendor: Varnish Software
Website: https://www.varnish-software.com/
Total Security Bulletins: 16

Security bulletins (16)

Secuity bulletin Severity Status Published
SB2025081376: HTTP/2 Made You Reset Attack in Varnish Cache and Varnish Enterprise Medium
Patched
13.08.2025
SB2025051363: HTTP request smuggling in Varnish Cache and Varnish Enterprise Medium
Patched
13.05.2025
SB2025031859: HTTP request smuggling in Varnish Cache and Varnish Enterprise Medium
Patched
18.03.2025
SB2024040916: Denial of service in Varnish Cache and Varnish Enterprise Medium
Patched
09.04.2024
SB2023082201: Authentication bypass in Varnish Cache vmod-digest module Medium
Patched
22.08.2023
SB2022110886: Multiple vulnerabilities in Varnish Cache Medium
Patched
08.11.2022
SB2022080920: Denial of service in Varnish Cache Medium
Patched
09.08.2022
SB2022020331: HTTP request smuggling in Varnish Cache Medium
Patched
03.02.2022
SB2021080215: HTTP request smuggling in Varnish Cache Medium
Patched
02.08.2021
SB2020040932: Information disclosure in Varnish Cache Medium
Patched
09.04.2020
SB2020040933: Input validation error in Varnish Cache Medium
Patched
09.04.2020
SB2020020618: Denial of service in Varnish Cache Medium
Patched
06.02.2020
SB2019090422: Denial of service in Varnish Cache Low
Patched
04.09.2019
SB2017111615: Memory leak in Varnish Cache Medium
Patched
16.11.2017
SB2017080404: Integer overflow in Varnish Cache Medium
Patched
04.08.2017
SB2013110101: Buffer overflow in Varnish Cache Medium
Patched
01.11.2013