Описание
Wangle's AcceptRoutingHandler incorrectly casts a socket when accepting a TLS 1.3 connection, leading to a potential denial of service attack against systems accepting such connections. This affects versions of Wangle prior to v2019.01.14.00
Ссылки
- PatchThird Party Advisory
- PatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2019.01.14.00 (исключая)
cpe:2.3:a:facebook:wangle:*:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00334
Низкий
5.9 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-400
CWE-19
Связанные уязвимости
CVSS3: 5.9
github
больше 3 лет назад
Wangle's AcceptRoutingHandler incorrectly casts a socket when accepting a TLS 1.3 connection, leading to a potential denial of service attack against systems accepting such connections. This affects versions of Wangle prior to v2019.01.14.00
EPSS
Процентиль: 56%
0.00334
Низкий
5.9 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-400
CWE-19