The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.Read M ...
Continue Reading15 декабря, 2023
Libraries that implement HTTP/2 are vulnerable to Denial Of Service (DoS). The vulnerability could be exploited by attackers via sending a large number of HTTP/2 requests to a vulnerable server, then ...
Continue Reading15 декабря, 2023
Summary The grpc Unary Server Interceptor opentelemetry-go-contrib/instrumentation/google.golang.org/grpc/otelgrpc/interceptor.go // UnaryServerInterceptor returns a grpc.UnaryServerInterceptor suitab ...
Continue Reading15 декабря, 2023
An Unchecked Return Value vulnerability in the user interfaces to the Juniper Networks Junos OS and Junos OS Evolved, the CLI, the XML API, the XML Management Protocol, the NETCONF Management Protocol ...
Continue Reading15 декабря, 2023
Lack of error handling in the TCP server in Google's gRPC starting version 1.23 on posix-compatible platforms (ex. Linux) allows an attacker to cause a denial of service by initiating a significant nu ...
Continue Reading15 декабря, 2023
## Summary This fix upgrades to node 18.18.0 and grpc 1.58.0. ## Vulnerability Details ** CVEID: **[CVE-2023-4785]() ** DESCRIPTION: **Google gRPC is vulnerable to a denial of service, caused by a lac ...
Continue Reading15 декабря, 2023
Summary The grpc Unary Server Interceptor opentelemetry-go-contrib/instrumentation/google.golang.org/grpc/otelgrpc/interceptor.go // UnaryServerInterceptor returns a grpc.UnaryServerInterceptor suitab ...
Continue Reading15 декабря, 2023
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-344 advisory. - Wasmtime is a standalone runtime for WebAssembly. Prior to versions 6.0.2, 7.0.1, and 8.0.1, ...
Continue Reading15 декабря, 2023
Back to Main