grpc security advisories
4 threat alerts tracking vulnerabilities and security advisories that affect grpc products.
Vulnios monitors grpc CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent grpc security news in one place, or click into an individual alert for full detail.
Critical Vulnerability: CVE-2017-9431 — grpc — grpc
Google gRPC before 2017-04-05 has an out-of-bounds write caused by a heap-based buffer overflow related to core/lib/iomgr/error.c.
criticalCVE-2017-9431Critical Vulnerability: CVE-2017-8359 — grpc — grpc
Google gRPC before 2017-03-29 has an out-of-bounds write caused by a heap-based use-after-free related to the grpc_call_destroy function in core/lib/surface/call.c.
criticalCVE-2017-8359Critical Vulnerability: CVE-2017-7860 — grpc — grpc
Google gRPC before 2017-02-22 has an out-of-bounds write caused by a heap-based buffer overflow related to the parse_unix function in core/ext/client_channel/parse_address.c.
criticalCVE-2017-7860Critical Vulnerability: CVE-2017-7861 — grpc — grpc
Google gRPC before 2017-02-22 has an out-of-bounds write related to the gpr_free function in core/lib/support/alloc.c.
criticalCVE-2017-7861
Track grpc exposure across your environment
Vulnios automatically cross-references your asset inventory against new grpc CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.
Start a free scan