Описание
An issue was discovered in Barrier before 2.3.4. The barriers component (aka the server-side implementation of Barrier) does not correctly close file descriptors for established TCP connections. An unauthenticated remote attacker can thus cause file descriptor exhaustion in the server process, leading to denial of service.
Ссылки
- ExploitMailing ListThird Party Advisory
- Release NotesThird Party Advisory
- ExploitMailing ListThird Party Advisory
- Release NotesThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.3.4 (исключая)
cpe:2.3:a:barrier_project:barrier:*:*:*:*:*:*:*:*
EPSS
Процентиль: 75%
0.00889
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-772
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
An issue was discovered in Barrier before 2.3.4. The barriers component (aka the server-side implementation of Barrier) does not correctly close file descriptors for established TCP connections. An unauthenticated remote attacker can thus cause file descriptor exhaustion in the server process, leading to denial of service.
EPSS
Процентиль: 75%
0.00889
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-772