CVE-2019-9517

Published Aug 13, 2019
Last updated a year ago
CVSS high 7.5
Overview

Description: Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of service. The attacker opens the HTTP/2 window so the peer can send without constraint; however, they leave the TCP window closed so the peer cannot actually write (many of) the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the servers queue the responses, this can consume excess memory, CPU, or both.
Source: cret@cert.org
NVD status: Modified
Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH
CVSS 3.0

Type: Secondary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH
CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C
Weaknesses

nvd@nist.gov: CWE-770
cret@cert.org: CWE-400
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:apple:swiftnio:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "93988E60-006B-434D-AB16-1FA1D2FEBC2A",
            "versionEndIncluding": "1.4.0",
            "versionStartIncluding": "1.0.0"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1D294D56-E784-4DA8-9C2C-BC5A05C92C0C",
            "versionStartIncluding": "10.12"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "65B1D2F6-BC1F-47AF-B4E6-4B50986AC622",
            "versionStartIncluding": "14.04"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EAC639E9-54EB-4EBD-A444-30B2E068EC9E",
            "versionEndExcluding": "2.4.40",
            "versionStartIncluding": "2.4.20"
          },
          {
            "criteria": "cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "603BF43B-FC99-4039-A3C0-467F015A32FA",
            "versionEndIncluding": "6.2.3",
            "versionStartIncluding": "6.0.0"
          },
          {
            "criteria": "cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07BB02CE-D4F2-459C-B0C6-FF78BF7996AE",
            "versionEndIncluding": "7.1.6",
            "versionStartIncluding": "7.0.0"
          },
          {
            "criteria": "cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D875E0D8-D109-4F7F-A4C4-9EDD66CEE74E",
            "versionEndIncluding": "8.0.3",
            "versionStartIncluding": "8.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD783B0C-9246-47D9-A937-6144FE8BFF0F"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:synology:diskstation_manager:6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "022A0BC6-2C70-406D-8D60-EC6F9F6A90CA"
          },
          {
            "criteria": "cpe:2.3:a:synology:skynas:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C997777-BE79-4F77-90D7-E1A71D474D88"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:synology:vs960hd_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D0C5120-B961-440F-B454-584BC54B549C"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:synology:vs960hd:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1CCBDFF9-AF42-4681-879B-CF789EBAD130"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D100F7CE-FC64-4CC6-852A-6136D72DA419"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97A4B8DF-58DA-4AB6-A1F9-331B36409BA3"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1E78106-58E6-4D59-990F-75DA575BFAD9"
          },
          {
            "criteria": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B620311B-34A3-48A6-82DF-6F078D7A4493"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:jboss_core_services:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2466282-51AB-478D-9FF4-FA524265ED2E"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0952BA1A-5DF9-400F-B01F-C3A398A8A2D4"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B157A2D-3422-4224-82D9-15AB3B989075"
          },
          {
            "criteria": "cpe:2.3:a:redhat:openshift_service_mesh:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "732F14CE-7994-4DD2-A28B-AE9E79826C01"
          },
          {
            "criteria": "cpe:2.3:a:redhat:quay:3.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B1987BDA-0113-4603-B9BE-76647EB043F2"
          },
          {
            "criteria": "cpe:2.3:a:redhat:software_collections:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9D7EE4B6-A6EC-4B9B-91DF-79615796673F"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:communications_element_manager:8.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ED5503EC-63B6-47EB-AE37-14DD317DDDD8"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_element_manager:8.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A99F85F8-F374-48B0-9534-BB9C07AFE76E"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_element_manager:8.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0C57FD3A-0CC1-4BA9-879A-8C4A40234162"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_element_manager:8.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "698FB6D0-B26F-4760-9B9B-1C65FBFF2126"
          },
          {
            "criteria": "cpe:2.3:a:oracle:graalvm:19.2.0:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C120C2F1-D50D-49CC-8E96-207ACCA49674"
          },
          {
            "criteria": "cpe:2.3:a:oracle:instantis_enterprisetrack:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A74FD5F-4FEA-4A74-8B92-72DFDE6BA464",
            "versionEndIncluding": "17.3",
            "versionStartIncluding": "17.1"
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_xstore_point_of_service:7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0ED83E3-E6BF-4EAA-AF8F-33485A88A218"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "765E9856-2748-4A8B-91F5-A4DB3C8C547A",
            "versionEndExcluding": "7.7.2.24",
            "versionStartIncluding": "7.7.2.0"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE6E66B1-3291-4E8E-93D6-30E9FDCF983E",
            "versionEndExcluding": "7.8.2.13",
            "versionStartIncluding": "7.8.2.0"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "227104AD-396D-4ADD-87C7-C4CD5583DA04",
            "versionEndExcluding": "8.2.0",
            "versionStartIncluding": "8.1.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1FE996B1-6951-4F85-AA58-B99A379D2163"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74FB695D-2C76-47AB-988E-5629D2E695E5",
            "versionEndIncluding": "8.8.1",
            "versionStartIncluding": "8.0.0"
          },
          {
            "criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CFC0252A-DF1D-4CF4-B450-27267227B599",
            "versionEndExcluding": "8.16.1",
            "versionStartIncluding": "8.9.0"
          },
          {
            "criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "25A3180B-21AF-4010-9DAB-41ADFD2D8031",
            "versionEndIncluding": "10.12.0",
            "versionStartIncluding": "10.0.0"
          },
          {
            "criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2EC65858-FF7B-4171-82EA-80942D426F40",
            "versionEndExcluding": "10.16.3",
            "versionStartIncluding": "10.13.0"
          },
          {
            "criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F522C500-AA33-4029-865F-F27FB00A354E",
            "versionEndExcluding": "12.8.1",
            "versionStartIncluding": "12.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 3.1

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References
