2 matches found
CVE-2022-31005 Integer Overflow in Vapor's HTTP Range Request
Vapor is an HTTP web framework for Swift. Users of Vapor prior to version 4.60.3 with FileMiddleware enabled are vulnerable to an integer overflow vulnerability that can crash the application. Version 4.60.3 contains a patch for this issue. As a workaround, disable FileMiddleware and serve via a...
CVE-2022-31005
CVE-2022-31005 affects the Vapor HTTP framework for Swift prior to 4.60.3 when FileMiddleware is enabled. The issue is an integer overflow in the middleware that can crash the application. Version 4.60.3 includes a patch; a workaround is to disable FileMiddleware and serve assets via a CDN. Affec...