Описание
The hash table used to manage connections in picoquic before b80fd3f uses a weak hash function, allowing remote attackers to cause a considerable CPU load on the server (a Hash DoS attack) by initiating connections with colliding Source Connection IDs (SCIDs).
EPSS
Процентиль: 25%
0.00085
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-407
Связанные уязвимости
CVSS3: 5.3
github
12 месяцев назад
The hash table used to manage connections in picoquic before b80fd3f uses a weak hash function, allowing remote attackers to cause a considerable CPU load on the server (a Hash DoS attack) by initiating connections with colliding Source Connection IDs (SCIDs).
EPSS
Процентиль: 25%
0.00085
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-407