Уязвимость CVE-2025-13836

CVE-2025-13836

CVSS3: 9.1

ubuntu

2 месяца назад

When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.

CVE-2025-13836

CVSS3: 9.1

nvd

2 месяца назад

When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.

CVE-2025-13836

CVSS3: 9.1

debian

2 месяца назад

When reading an HTTP response from a server, if no read amount is spec ...

GHSA-399h-rrqc-rpgv

CVSS3: 9.1

github

2 месяца назад

When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.

RLSA-2026:1410

rocky

7 дней назад

Moderate: python3.11 security update

exploitDog

CVE-2025-13836

Описание

Связанные уязвимости