GHSA-9gx8-hhv8-hw56

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the http_header signature to not alert on a response with a single \r\n ending.

Ссылки

EPSS

Процентиль: 47%

0.00242

Низкий

CVE ID

CVE-2019-17420

Дефекты

CWE-20

Связанные уязвимости

CVE-2019-17420

CVSS3: 5.3

ubuntu

больше 6 лет назад

In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the http_header signature to not alert on a response with a single \r\n ending.

CVE-2019-17420

CVSS3: 5.3

nvd

больше 6 лет назад

In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the http_header signature to not alert on a response with a single \r\n ending.

CVE-2019-17420

CVSS3: 5.3

debian

больше 6 лет назад

In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other prod ...

EPSS

Процентиль: 47%

0.00242

Низкий

CVE ID

CVE-2019-17420

Дефекты

CWE-20