CVE-2019-9516

Published Aug 13, 2019

Last updated a year ago

CVSS medium 6.5

Overview

Description: Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory.
Source: cret@cert.org
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 6.5
Impact score: 3.6
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM

CVSS 3.0

Type: Secondary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 6.9
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-770
cret@cert.org: CWE-400

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:apple:swiftnio:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "93988E60-006B-434D-AB16-1FA1D2FEBC2A",
            "versionEndIncluding": "1.4.0",
            "versionStartIncluding": "1.0.0"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1D294D56-E784-4DA8-9C2C-BC5A05C92C0C",
            "versionStartIncluding": "10.12"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "65B1D2F6-BC1F-47AF-B4E6-4B50986AC622",
            "versionStartIncluding": "14.04"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "603BF43B-FC99-4039-A3C0-467F015A32FA",
            "versionEndIncluding": "6.2.3",
            "versionStartIncluding": "6.0.0"
          },
          {
            "criteria": "cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07BB02CE-D4F2-459C-B0C6-FF78BF7996AE",
            "versionEndIncluding": "7.1.6",
            "versionStartIncluding": "7.0.0"
          },
          {
            "criteria": "cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D875E0D8-D109-4F7F-A4C4-9EDD66CEE74E",
            "versionEndIncluding": "8.0.3",
            "versionStartIncluding": "8.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD783B0C-9246-47D9-A937-6144FE8BFF0F"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97A4B8DF-58DA-4AB6-A1F9-331B36409BA3"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:synology:diskstation_manager:6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "022A0BC6-2C70-406D-8D60-EC6F9F6A90CA"
          },
          {
            "criteria": "cpe:2.3:a:synology:skynas:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C997777-BE79-4F77-90D7-E1A71D474D88"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:synology:vs960hd_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D0C5120-B961-440F-B454-584BC54B549C"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:synology:vs960hd:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1CCBDFF9-AF42-4681-879B-CF789EBAD130"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D100F7CE-FC64-4CC6-852A-6136D72DA419"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97A4B8DF-58DA-4AB6-A1F9-331B36409BA3"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "36D96259-24BD-44E2-96D9-78CE1D41F956"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1E78106-58E6-4D59-990F-75DA575BFAD9"
          },
          {
            "criteria": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B620311B-34A3-48A6-82DF-6F078D7A4493"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:jboss_core_services:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2466282-51AB-478D-9FF4-FA524265ED2E"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0952BA1A-5DF9-400F-B01F-C3A398A8A2D4"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B157A2D-3422-4224-82D9-15AB3B989075"
          },
          {
            "criteria": "cpe:2.3:a:redhat:openshift_service_mesh:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "732F14CE-7994-4DD2-A28B-AE9E79826C01"
          },
          {
            "criteria": "cpe:2.3:a:redhat:quay:3.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B1987BDA-0113-4603-B9BE-76647EB043F2"
          },
          {
            "criteria": "cpe:2.3:a:redhat:software_collections:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9D7EE4B6-A6EC-4B9B-91DF-79615796673F"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:graalvm:19.2.0:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C120C2F1-D50D-49CC-8E96-207ACCA49674"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "765E9856-2748-4A8B-91F5-A4DB3C8C547A",
            "versionEndExcluding": "7.7.2.24",
            "versionStartIncluding": "7.7.2.0"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE6E66B1-3291-4E8E-93D6-30E9FDCF983E",
            "versionEndExcluding": "7.8.2.13",
            "versionStartIncluding": "7.8.2.0"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "227104AD-396D-4ADD-87C7-C4CD5583DA04",
            "versionEndExcluding": "8.2.0",
            "versionStartIncluding": "8.1.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "68DD813A-1BC4-45FB-A3C4-E1BCE5F82EC1",
            "versionEndExcluding": "1.16.1",
            "versionStartIncluding": "1.9.5"
          },
          {
            "criteria": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DF1705D3-ABAB-477E-9572-7D4DBAB4E38B",
            "versionEndIncluding": "1.17.2",
            "versionStartIncluding": "1.17.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F881316C-7511-420C-A48B-CE7712D567CD",
            "versionEndExcluding": "8.16.1",
            "versionStartIncluding": "8.0.0"
          },
          {
            "criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8CAE0BA6-142B-40D8-805F-6CFF8572C43D",
            "versionEndExcluding": "10.16.3",
            "versionStartIncluding": "10.0.0"
          },
          {
            "criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F522C500-AA33-4029-865F-F27FB00A354E",
            "versionEndExcluding": "12.8.1",
            "versionStartIncluding": "12.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References