Denial of service via memory exhaustion in github.com/hashicorp/vault

🗓️ 03 Jan 2024 22:19:56Reported by GoogleType

osv🔗 osv.dev👁 16 Views

Denial of service via memory exhaustion in HashiCorp Vault on github.co

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 14
CVE	CVE-2023-6337	8 Dec 202322:15	–	cve
OSV	BIT-vault-2023-6337	6 Mar 202411:08	–	osv
OSV	Memory exhaustion in HashiCorp Vault	9 Dec 202300:35	–	osv
Veracode	Denial Of Service (DoS)	12 Dec 202311:41	–	veracode
Cvelist	CVE-2023-6337 Vault May be Vulnerable to a Denial of Service Through Memory Exhaustion When Handling Large HTTP Requests	8 Dec 202321:12	–	cvelist
NVD	CVE-2023-6337	8 Dec 202322:15	–	nvd
Github Security Blog	Memory exhaustion in HashiCorp Vault	9 Dec 202300:35	–	github
CBLMariner	CVE-2023-6337 affecting package cert-manager for versions less than 1.12.12-1	25 Aug 202415:13	–	cbl_mariner
RedhatCVE	CVE-2023-6337	10 Dec 202309:56	–	redhatcve
Prion	Design/Logic Flaw	8 Dec 202322:15	–	prion

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-6337
discuss	www.discuss.hashicorp.com/t/hcsec-2023-34-vault-vulnerable-to-denial-of-service-through-memory-exhaustion-when-handling-large-http-requests/60741
github	www.github.com/hashicorp/vault/pull/24354

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Jan 2024 22:56Current

6.8Medium risk

Vulners AI Score6.8

CVSS37.5

EPSS0.00719