6 matches found
CVE-2024-9056
BentoML version v1.3.4post1 is vulnerable to a Denial of Service DoS attack. The vulnerability can be exploited by appending characters, such as dashes -, to the end of a multipart boundary in an HTTP request. This causes the server to continuously process each character, leading to excessive...
ai-dynamo (=0.1.0), bento-sgl-router (>=0.0.1 <=0.0.6) +32 more potentially affected by CVE-2024-9056 via bentoml (>=0.10.1 <=1.4.39)
bentoml PYPI version =0.10.1, =0.0.1, =0.1.0, =0.1.0, =0.2.3, =0.1.0, =0.0.1, =0.0.10, =0.1.0, =0.2.0, =0.0.5, =0.1.1 - fusionmllib =0.1.0 - kazemlstack =0.1.0 and more Source cves: CVE-2024-9056 Source advisory: OSV:GHSA-HW8J-HW49-752C...
CVE-2024-9056
BentoML version v1.3.4post1 is vulnerable to a Denial of Service DoS attack. The vulnerability can be exploited by appending characters, such as dashes -, to the end of a multipart boundary in an HTTP request. This causes the server to continuously process each character, leading to excessive...
CVE-2024-9056
CVE-2024-9056 affects BentoML v1.3.4post1 and is a Denial of Service (DoS) caused by improper handling of multipart boundaries. An attacker can append characters to the end of a multipart boundary in HTTP requests, causing the server to repeatedly process input and exhaust resources, leading to s...
CVE-2024-9056 Denial of Service in bentoml/bentoml
BentoML version v1.3.4post1 is vulnerable to a Denial of Service DoS attack. The vulnerability can be exploited by appending characters, such as dashes -, to the end of a multipart boundary in an HTTP request. This causes the server to continuously process each character, leading to excessive...
CVE-2024-9056 Denial of Service in bentoml/bentoml
BentoML version v1.3.4post1 is vulnerable to a Denial of Service DoS attack. The vulnerability can be exploited by appending characters, such as dashes -, to the end of a multipart boundary in an HTTP request. This causes the server to continuously process each character, leading to excessive...