Lucene search
GoogleOSV:GO-2023-1766HistoryJun 14, 2023 - 5:22 p.m.
Denial of service from memory leak in github.com/ipfs/go-libipfs
2023-06-1417:22:51
Google
osv.dev
8
denial of service
memory leak
github.com/ipfs/go-libipfs
bitswap server
unbounded memory allocation
CVSS3
8.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
EPSS
0.002
Percentile
53.3%
An attacker can cause a Bitswap server to allocate and leak unbounded amounts of memory.
Related
prion
prion
Design/Logic Flaw
2023-05-10 14:15:00
osv
osv
Boxo bitswap/server: DOS unbounded persistent memory leak
2023-05-11 20:32:18
github
github
Boxo bitswap/server: DOS unbounded persistent memory leak
2023-05-11 20:32:18
veracode
veracode
Denial Of Service (DoS)
2023-05-15 03:08:42
nvd
nvd
CVE-2023-25568
2023-05-10 14:15:32
cvelist
cvelist
CVE-2023-25568 Boxo bitswap/server: DOS unbounded persistent memory leak
2023-05-10 00:00:00
cve
cve
CVE-2023-25568
2023-05-10 14:15:32
CVSS3
8.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
EPSS
0.002
Percentile
53.3%
Related for OSV:GO-2023-1766