Описание
nghttp2 before 1.7.1 allows remote attackers to cause a denial of service (memory exhaustion).
Ссылки
- Mailing ListPatchThird Party Advisory
- Mailing ListPatchThird Party Advisory
- Issue TrackingPatchThird Party Advisory
- Release NotesThird Party Advisory
- Release NotesThird Party Advisory
- Third Party Advisory
- Mailing ListPatchThird Party Advisory
- Mailing ListPatchThird Party Advisory
- Issue TrackingPatchThird Party Advisory
- Release NotesThird Party Advisory
- Release NotesThird Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.7.1 (исключая)
cpe:2.3:a:nghttp2:nghttp2:*:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*
EPSS
Процентиль: 81%
0.01589
Низкий
3.3 Low
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-400
Связанные уязвимости
CVSS3: 3.3
ubuntu
около 6 лет назад
nghttp2 before 1.7.1 allows remote attackers to cause a denial of service (memory exhaustion).
redhat
почти 10 лет назад
nghttp2 before 1.7.1 allows remote attackers to cause a denial of service (memory exhaustion).
CVSS3: 3.3
debian
около 6 лет назад
nghttp2 before 1.7.1 allows remote attackers to cause a denial of serv ...
github
больше 3 лет назад
nghttp2 before 1.7.1 allows remote attackers to cause a denial of service (memory exhaustion).
EPSS
Процентиль: 81%
0.01589
Низкий
3.3 Low
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-400