Описание
An exploitable denial-of-service vulnerability exists in the fabric-worker component of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause the server process to dereference a null pointer. An attacker can simply connect to a TCP port in order to trigger this vulnerability.
Ссылки
- Broken LinkThird Party AdvisoryVDB Entry
- ExploitPatchTechnical DescriptionThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- ExploitPatchTechnical DescriptionThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:aerospike:database_server:3.10.0.3:*:*:*:*:*:*:*
EPSS
Процентиль: 80%
0.01399
Низкий
7.5 High
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-476
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
An exploitable denial-of-service vulnerability exists in the fabric-worker component of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause the server process to dereference a null pointer. An attacker can simply connect to a TCP port in order to trigger this vulnerability.
EPSS
Процентиль: 80%
0.01399
Низкий
7.5 High
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-476