Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An uncontrolled resource consumption (memory leak) flaw was found in ZeroMQ's src/xpub.cpp in versions before 4.3.3. This flaw allows a remote unauthenticated attacker to send crafted PUB messages that consume excessive memory if the CURVE/ZAP authentication is disabled on the server, causing a denial of service. The highest threat from this vulnerability is to system availability.
CVSS Information
N/A
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
ZeroMQ 资源管理错误漏洞
Vulnerability Description
ZeroMQ是一个轻量级分布式消息传递引擎核心库。 ZeroMQ 存在安全漏洞,该漏洞源于一个不受控制的资源消耗缺陷。远程未经身份验证的攻击者可利用该漏洞发送消耗过多内存的精心制作的PUB消息,从而导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A