Описание
Lack of error handling in the TCP server in Google's gRPC starting version 1.23 on posix-compatible platforms (ex. Linux) allows an attacker to cause a denial of service by initiating a significant number of connections with the server. Note that gRPC C++ Python, and Ruby are affected, but gRPC Java, and Go are NOT affected.
Ссылки
- Issue TrackingPatch
- Issue Tracking
- Issue Tracking
- Issue Tracking
- Issue Tracking
- Issue TrackingPatch
- Issue Tracking
- Issue Tracking
- Issue Tracking
- Issue Tracking
Уязвимые конфигурации
Одно из
EPSS
7.5 High
CVSS3
Дефекты
Связанные уязвимости
Lack of error handling in the TCP server in Google's gRPC starting version 1.23 on posix-compatible platforms (ex. Linux) allows an attacker to cause a denial of service by initiating a significant number of connections with the server. Note that gRPC C++ Python, and Ruby are affected, but gRPC Java, and Go are NOT affected.
Lack of error handling in the TCP server in Google's gRPC starting version 1.23 on posix-compatible platforms (ex. Linux) allows an attacker to cause a denial of service by initiating a significant number of connections with the server. Note that gRPC C++ Python, and Ruby are affected, but gRPC Java, and Go are NOT affected.
Lack of error handling in the TCP server in Google's gRPC starting ver ...
Denial of Service Vulnerability in gRPC TCP Server (Posix-compatible platforms)
EPSS
7.5 High
CVSS3