Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:37385
HistoryOct 03, 2022 - 6:06 a.m.

Denial Of Service (DoS)

2022-10-0306:06:10
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
vulnerability
decodetemplateset
dos
netflow.go
sflow packets
memory consumption
application crash
cloudflare
github

EPSS

0.001

Percentile

38.4%

JSON

github.com/cloudflare/goflow is vulnerable to denial of service. The vulnerability exists in the DecodeTemplateSet function of netflow.go due to improper handling of sflow packets in the sflow decode package, which allows an attacker to craft malformed packets to consume a huge memory resulting in an application crash.

Related

osv 3
github 1
nvd 1
hackerone 1
cve 1
prion 1
cvelist 1
osv
osv
CVE-2022-2529
2022-09-30 11:15:09
Cloudflare GoFlow vulnerable to a Denial of Service in the sflow packet handling package
2022-10-01 15:52:23
Cloudflare GoFlow vulnerable to a Denial of Service in the sflow packet handling package in github.com/cloudflare/goflow
2024-08-21 16:03:24
github
github
Cloudflare GoFlow vulnerable to a Denial of Service in the sflow packet handling package
2022-10-01 15:52:23
nvd
nvd
CVE-2022-2529
2022-09-30 11:15:09
hackerone
hackerone
Cloudflare Public Bug Bounty: Lack of Packet Sanitation in Goflow Results in Multiple DoS Attack Vectors and Bugs
2022-07-13 23:31:37
cve
cve
CVE-2022-2529
2022-09-30 11:15:09
prion
prion
Denial of service
2022-09-30 11:15:00
cvelist
cvelist
CVE-2022-2529 Multiple DoS Attack Vectors in sflow packet handling
2022-09-30 10:45:11

EPSS

0.001

Percentile

38.4%

JSON
Related for VERACODE:37385
osv3github1nvd1hackerone1cve1prion1cvelist1