CVE-2014-0193

Published May 6, 2014

Last updated 3 months ago

CVSS info 5.0

Overview

Description: WebSocket08FrameDecoder in Netty 3.6.x before 3.6.9, 3.7.x before 3.7.1, 3.8.x before 3.8.2, 3.9.x before 3.9.1, and 4.0.x before 4.0.19 allows remote attackers to cause a denial of service (memory consumption) via a TextWebSocketFrame followed by a long stream of ContinuationWebSocketFrames.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-399

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:netty:netty:3.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F3EEBC0F-815E-4F66-B9B4-1256AAAB03A7"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:3.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "140919D1-2868-4F11-8421-5CA35A3FFCA0"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:3.6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "28C7EA90-B934-438B-9705-5B53B0F3D09C"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:3.6.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6C1DCF99-CBB1-4FD2-B073-B91A2DD27290"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:3.6.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4EA1D52-61D5-4448-BA64-0D9A8FFFE173"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:3.6.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2CFB08C8-9021-4C26-B8B8-A2C07EB4BB83"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:3.6.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C3707350-D658-485E-A136-04AF3ED7AF4E"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:3.6.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D4831E7-1F30-4AEA-82D8-E703701DC8B4"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:3.6.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7CE508BE-00C4-4304-BA92-063129C2B6E5"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:3.7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3876968E-7B85-4149-BF6B-488D32A7B2B7"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:3.8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2C365439-029C-4F5F-ADB2-0153DD4965B2"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:3.8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CAECE2B6-DD9F-4FEC-B15F-EA99BF716390"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:3.9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9879F5B0-DF82-470F-A028-1B69BFB67FB9"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "069A7F48-DDF9-4C29-829F-63480AC8252A"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1657CCDD-547C-462F-84A6-5C7897A0DE3D"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48DEF144-095B-4A16-B1A0-540FFCB0571D"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "34811757-A83B-4177-B256-17C75669CB4F"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F0B1676-F16F-49CB-A1D2-961236B29FB5"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9D5B2C70-1CA5-4285-B85A-C01A1F0D256F"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4223B041-EA1F-4EF5-9C56-93B47426D634"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3CC66E4C-0291-4F01-B6FF-1E6ABFFE3DD3"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3FF070FD-09A2-453C-ABB0-57806785AC0B"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2DB8331D-6E3B-419A-A5D1-7FCA56B01D9B"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A78B72B6-389E-4EE4-86D4-9C8499BAF7CD"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79C9F0BF-82E7-4E8D-81E0-8BE38AC892FE"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "638159B5-DCB2-48F2-B98C-D02AA4B55567"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8DD72B11-80BE-4EE8-8350-E84A4DE19A14"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "938E8F20-809C-41CF-90B3-16C4FA22BE7D"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7ECC0699-8544-4D5E-ACF9-C09A5EF7C6A4"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3947E2CD-9E5C-4D8F-970E-9AFCEBB9BEA6"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D14F96ED-9B74-446A-BDAA-37DA46BF1C52"
          },
          {
            "criteria": "cpe:2.3:a:netty:netty:4.0.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "490A338C-50BB-4292-B3E3-EBCB4D2A89F6"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References