GHSA-3Q6M-V84F-6P9H quic-go vulnerable to pointer dereference that can lead to panic

🗓️ 30 Oct 2023 15:05:08Reported by GoogleType

osv🔗 osv.dev👁 20 Views

quic-go vulnerability in ACK frame serialization leading to pani

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 12
Vulnrichment	CVE-2023-46239 quic-go vulnerable to pointer dereference that can lead to panic	31 Oct 202315:02	–	vulnrichment
Cvelist	CVE-2023-46239 quic-go vulnerable to pointer dereference that can lead to panic	31 Oct 202315:02	–	cvelist
Veracode	Denial Of Service (DoS)	31 Oct 202306:01	–	veracode
NVD	CVE-2023-46239	31 Oct 202316:15	–	nvd
Github Security Blog	quic-go vulnerable to pointer dereference that can lead to panic	30 Oct 202315:08	–	github
Prion	Null pointer dereference	31 Oct 202316:15	–	prion
OSV	UBUNTU-CVE-2023-46239	31 Oct 202316:15	–	osv
OSV	GO-2023-2160 Panic during QUIC handshake in github.com/quic-go/quic-go	2 Nov 202321:44	–	osv
OSV	CVE-2023-46239	31 Oct 202316:15	–	osv
UbuntuCve	CVE-2023-46239	31 Oct 202300:00	–	ubuntucve

Osv

Node

quic-go_project quic-goRange0.37.0–0.37.3

Source	Link
github	www.github.com/quic-go/quic-go/security/advisories/GHSA-3q6m-v84f-6p9h
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-46239
github	www.github.com/quic-go/quic-go/commit/b6a4725b60f1fe04e8f1ddcc3114e290fcea1617
github	www.github.com/quic-go/quic-go
github	www.github.com/quic-go/quic-go/releases/tag/v0.37.3

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

30 Oct 2023 15:08Current

7.3High risk

Vulners AI Score7.3

CVSS37.5

EPSS0.0043

SSVC