Lucene search
Https://gitlab.com/gitlab-org/security-products/gemnasium-dbGITLAB-5D70693162878D346F37DC640B07D5DEHistoryOct 05, 2023 - 12:00 a.m.
Vapor's incorrect request error handling triggers server crash
2023-10-0500:00:00
https://gitlab.com/gitlab-org/security-products/gemnasium-db
gitlab.com
3
vapor
http 1.x
error handling
swift-nio
api misuse
server process
termination
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
6.7
Confidence
Low
EPSS
0.001
Percentile
27.3%
Vapor incorrectly handles errors encountered during parsing of HTTP 1.x requests, triggering a precondition failure in swift-nio due to API misuse and causing immediate termination of the server process.
Affected configurations
Node
swiftvaporRange4.83.2≥
ORswiftvaporRange<4.84.2
Related
github
github
Vapor's incorrect request error handling triggers server crash
2023-10-05 20:55:58
nvd
nvd
CVE-2023-44386
2023-10-05 18:15:12
osv
osv
CVE-2023-44386
2023-10-05 18:15:12
Vapor's incorrect request error handling triggers server crash
2023-10-05 20:55:58
cvelist
cvelist
vulnrichment
vulnrichment
prion
prion
Denial of service
2023-10-05 18:15:00
cve
cve
CVE-2023-44386
2023-10-05 18:15:12
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
6.7
Confidence
Low
EPSS
0.001
Percentile
27.3%
Related for GITLAB-5D70693162878D346F37DC640B07D5DE