Design/Logic Flaw

2021-11-0109:15:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.5%

JSON

In Apache MINA, a specifically crafted, malformed HTTP request may cause the HTTP Header decoder to loop indefinitely. The decoder assumed that the HTTP Header begins at the beginning of the buffer and loops if there is more data than expected. Please update MINA to 2.1.5 or greater.

CPENameOperatorVersion
minalt2.0.22
minage2.1.0
minalt2.1.5
banking_paymentseq14.5
banking_trade_finance_process_managementeq14.5
banking_treasury_managementeq14.5
communications_cloud_native_core_consoleeq1.9.0
customer_management_and_segmentation_foundationeq18.0
customer_management_and_segmentation_foundationeq19.0
flexcube_universal_bankingeq14.5

Name	Operator	Version
mina	lt	2.0.22
mina	ge	2.1.0
mina	lt	2.1.5
banking_payments	eq	14.5
banking_trade_finance_process_management	eq	14.5
banking_treasury_management	eq	14.5
communications_cloud_native_core_console	eq	1.9.0
customer_management_and_segmentation_foundation	eq	18.0
customer_management_and_segmentation_foundation	eq	19.0
flexcube_universal_banking	eq	14.5