CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
96.3%
Yaws before 1.80 allows remote attackers to cause a denial of service (memory consumption and crash) via a request with a large number of headers.
Vendor | Product | Version | CPE |
---|---|---|---|
yaws | yaws | * | cpe:2.3:a:yaws:yaws:*:*:*:*:*:*:*:* |
yaws | yaws | 1.50 | cpe:2.3:a:yaws:yaws:1.50:*:*:*:*:*:*:* |
yaws | yaws | 1.51 | cpe:2.3:a:yaws:yaws:1.51:*:*:*:*:*:*:* |
yaws | yaws | 1.52 | cpe:2.3:a:yaws:yaws:1.52:*:*:*:*:*:*:* |
yaws | yaws | 1.53 | cpe:2.3:a:yaws:yaws:1.53:*:*:*:*:*:*:* |
yaws | yaws | 1.54 | cpe:2.3:a:yaws:yaws:1.54:*:*:*:*:*:*:* |
yaws | yaws | 1.55 | cpe:2.3:a:yaws:yaws:1.55:*:*:*:*:*:*:* |
yaws | yaws | 1.56 | cpe:2.3:a:yaws:yaws:1.56:*:*:*:*:*:*:* |
yaws | yaws | 1.57 | cpe:2.3:a:yaws:yaws:1.57:*:*:*:*:*:*:* |
yaws | yaws | 1.58 | cpe:2.3:a:yaws:yaws:1.58:*:*:*:*:*:*:* |