Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2019-3564

Опубликовано: 06 мая 2019
Источник: nvd
CVSS3: 7.5
CVSS2: 5
EPSS Низкий

Описание

Go Facebook Thrift servers would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send short messages which would take a long time for the server to parse, potentially leading to denial of service. This issue affects Facebook Thrift prior to v2019.03.04.00.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:facebook:thrift:*:*:*:*:*:*:*:*
Версия до 2019.03.04.00 (исключая)

EPSS

Процентиль: 68%
0.0056
Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-834
CWE-755

Связанные уязвимости

ubuntu логотип

CVE-2019-3564

CVSS3: 7.5
ubuntu
почти 7 лет назад

Go Facebook Thrift servers would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send short messages which would take a long time for the server to parse, potentially leading to denial of service. This issue affects Facebook Thrift prior to v2019.03.04.00.

github логотип

GHSA-x4rg-4545-4w7w

CVSS3: 7.5
github
почти 4 года назад

Improper Input Validation and Excessive Iteration in Go Facebook Thrift

EPSS

Процентиль: 68%
0.0056
Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-834
CWE-755