Описание
An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an infinite loop and denial-of-service based on user input. This issue affected versions of fizz prior to v2019.03.04.00.
Ссылки
- PatchThird Party Advisory
- PatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2019.03.04.00 (исключая)
cpe:2.3:a:facebook:fizz:*:*:*:*:*:*:*:*
EPSS
Процентиль: 66%
0.00521
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-835
CWE-131
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an infinite loop and denial-of-service based on user input. This issue affected versions of fizz prior to v2019.03.04.00.
EPSS
Процентиль: 66%
0.00521
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-835
CWE-131