Vulnerabilities > Varnish Software > Varnish Enterprise > 6.0.13
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-21 | CVE-2025-30346 | HTTP Request Smuggling vulnerability in multiple products Varnish Cache before 7.6.2 and Varnish Enterprise before 6.0.13r10 allow client-side desync via HTTP/1 requests. | 4.8 |
| 2025-03-21 | CVE-2025-30347 | Out-of-bounds Read vulnerability in Varnish-Software Varnish Enterprise 6.0.13 Varnish Enterprise before 6.0.13r13 allows remote attackers to obtain sensitive information via an out-of-bounds read for range requests on ephemeral MSE4 stevedore objects. | 7.5 |