3 matches found
CVE-2023-38403
CVE-2023-38403 affects iperf3 builds prior to 3.14 (versions < 3.14). The vulnerability arises from a memory/length handling issue that can cause an integer overflow and heap corruption, with the potential for crash or arbitrary code execution as described in the reports. Exploitation status i...
CVE-2023-7250
CVE-2023-7250 affects iperf/iperf3: a misbehaving client that sends less data than expected can cause the iperf3 server to hang waiting for the remainder, denying service to other connections. Affected projects and notes from connected sources confirm the vulnerability in iperf3 when used as a se...
CVE-2024-26306
CVE-2024-26306 concerns iperf3 prior to 3.17 when used as a server with RSA authentication under OpenSSL prior to 3.2.0. A timing side-channel exists in the RSA decryption operation, potentially enabling an attacker to recover credential plaintext after sending a large number of trial messages, d...