Lucene search
PRIOn knowledge basePRION:CVE-2023-6337HistoryDec 08, 2023 - 10:15 p.m.
Design/Logic Flaw
2023-12-0822:15:00
PRIOn knowledge base
www.prio-n.com
2
hashicorp vault
vault enterprise
denial of service
memory exhaustion
http requests
vulnerability
nvd
fix
update
HashiCorp Vault and Vault Enterprise 1.12.0 and newer are vulnerable to a denial of service through memory exhaustion of the host when handling large unauthenticated and authenticated HTTP requests from a client. Vault will attempt to map the request to memory, resulting in the exhaustion of available memory on the host, which may cause Vault to crash.
Fixed inΒ Vault 1.15.4, 1.14.8, 1.13.12.
Related
osv
osv
BIT-vault-2023-6337
2024-03-06 11:08:02
Memory exhaustion in HashiCorp Vault
2023-12-09 00:35:05
Denial of service via memory exhaustion in github.com/hashicorp/vault
2024-01-03 22:56:19
cve
cve
CVE-2023-6337
2023-12-08 22:15:07
nvd
nvd
CVE-2023-6337
2023-12-08 22:15:07
cvelist
cvelist
github
github
Memory exhaustion in HashiCorp Vault
2023-12-09 00:35:05
veracode
veracode
Denial Of Service (DoS)
2023-12-12 11:41:23
redhatcve
redhatcve
CVE-2023-6337
2023-12-10 09:56:33
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in IBM CloudPak for AIOps
2024-06-26 16:06:34