Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-47908

Опубликовано: 06 авг. 2025
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 7.5

Описание

Middleware causes a prohibitive amount of heap allocations when processing malicious preflight requests that include a Access-Control-Request-Headers (ACRH) header whose value contains many commas. This behavior can be abused by attackers to produce undue load on the middleware/server as an attempt to cause a denial of service.

РелизСтатусПримечание
devel

needs-triage

esm-apps/focal

needs-triage

esm-apps/jammy

needs-triage

esm-apps/noble

needs-triage

jammy

needs-triage

noble

needs-triage

plucky

needs-triage

upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 15%
0.00049
Низкий

7.5 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2025-47908

CVSS3: 5.3
redhat
12 дней назад

Middleware causes a prohibitive amount of heap allocations when processing malicious preflight requests that include a Access-Control-Request-Headers (ACRH) header whose value contains many commas. This behavior can be abused by attackers to produce undue load on the middleware/server as an attempt to cause a denial of service.

nvd логотип

CVE-2025-47908

CVSS3: 7.5
nvd
12 дней назад

Middleware causes a prohibitive amount of heap allocations when processing malicious preflight requests that include a Access-Control-Request-Headers (ACRH) header whose value contains many commas. This behavior can be abused by attackers to produce undue load on the middleware/server as an attempt to cause a denial of service.

debian логотип

CVE-2025-47908

CVSS3: 7.5
debian
12 дней назад

Middleware causes a prohibitive amount of heap allocations when proces ...

github логотип

GHSA-mh55-gqvf-xfwm

github
около 1 года назад

Denial of service via malicious preflight requests in github.com/rs/cors

EPSS

Процентиль: 15%
0.00049
Низкий

7.5 High

CVSS3