Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2024-38809

Опубликовано: 27 сент. 2024
Источник: nvd
CVSS3: 5.3
EPSS Низкий

Описание

Applications that parse ETags from "If-Match" or "If-None-Match" request headers are vulnerable to DoS attack.

Users of affected versions should upgrade to the corresponding fixed version.

Users of older, unsupported versions could enforce a size limit on "If-Match" and "If-None-Match" headers, e.g. through a Filter.

Ссылки

EPSS

Процентиль: 34%
0.0014
Низкий

5.3 Medium

CVSS3

Дефекты

CWE-400

Связанные уязвимости

ubuntu логотип

CVE-2024-38809

CVSS3: 5.3
ubuntu
больше 1 года назад

Applications that parse ETags from "If-Match" or "If-None-Match" request headers are vulnerable to DoS attack. Users of affected versions should upgrade to the corresponding fixed version. Users of older, unsupported versions could enforce a size limit on "If-Match" and "If-None-Match" headers, e.g. through a Filter.

redhat логотип

CVE-2024-38809

CVSS3: 5.3
redhat
больше 1 года назад

Applications that parse ETags from "If-Match" or "If-None-Match" request headers are vulnerable to DoS attack. Users of affected versions should upgrade to the corresponding fixed version. Users of older, unsupported versions could enforce a size limit on "If-Match" and "If-None-Match" headers, e.g. through a Filter.

debian логотип

CVE-2024-38809

CVSS3: 5.3
debian
больше 1 года назад

Applications that parse ETags from "If-Match" or "If-None-Match" reque ...

github логотип

GHSA-2rmj-mq67-h97g

CVSS3: 5.3
github
больше 1 года назад

Spring Framework DoS via conditional HTTP request

fstec логотип

BDU:2024-08650

CVSS3: 5.3
fstec
больше 1 года назад

Уязвимость программной платформы Spring Framework, связанная с ошибками освобождения ресурсов, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 34%
0.0014
Низкий

5.3 Medium

CVSS3

Дефекты

CWE-400