CVE-2024-47535 – “Netty Denial of Service vulnerability”

11月 12, 2024
5:16 pm

CVE ID : CVE-2024-47535

Published : Nov. 12, 2024, 4:15 p.m. | 1 hour ago

Description : Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. An unsafe reading of environment file could potentially cause a denial of service in Netty. When loaded on an Windows application, Netty attempts to load a file that does not exist. If an attacker creates such a large file, the Netty application crashes. This vulnerability is fixed in 4.1.115.

Severity: 5.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-47535 – “Netty Denial of Service vulnerability”

Elvescore.io

Recent Posts

CVE-2024-12960 – Apache MCA 1.0 SQL Injection Vulnerability

CVE-2024-12961 – Apache MCA Portfolio Management System SQL Injection Vulnerability

CVE-2024-12908 – Delinea Secret Server Regular Expression Injection Vulnerability

CVE-2024-12958 – RPost MCA SQL Injection Vulnerability

CVE-2024-12959 – “Fortress MCA SQL Injection”

CVE-2024-51540 – Dell ECS Arithmetic Overflow Vulnerability (Path Traversal)

CVE-2024-47535 – “Netty Denial of Service vulnerability”

CVE-2024-47535 – “Netty Denial of Service vulnerability”