Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Denial of Service (DoS)
Vulnerability Description
The package github.com/pires/go-proxyproto before 0.6.0 are vulnerable to Denial of Service (DoS) via creating connections without the proxy protocol header.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
N/A
Vulnerability Title
go-proxyproto 处理逻辑错误漏洞
Vulnerability Description
Pires go-proxyproto是 (Pires)开源的一个应用软件。提供一种安全的方式,可以跨NAT或TCP代理的多层安全地传输连接信息功能。 go-proxyproto 中存在处理逻辑错误漏洞,该漏洞源于产品在没有代理协议头的情况下创建连接,攻击者可通过该漏洞导致拒绝服务。以下产品及版本受到影响:go-proxyproto 0.6.0 之前版本。
CVSS Information
N/A
Vulnerability Type
N/A