Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in nbdkit due to to improperly caching plaintext state across the STARTTLS encryption boundary. A MitM attacker could use this flaw to inject a plaintext NBD_OPT_STRUCTURED_REPLY before proxying everything else a client sends to the server, potentially leading the client to terminate the NBD session. The highest threat from this vulnerability is to system availability.
CVSS Information
N/A
Vulnerability Type
通信信道中传输过程中消息完整性的不正确执行
Vulnerability Title
Libguestfs Nbdkit 安全漏洞
Vulnerability Description
Libguestfs Nbdkit是Libguestfs社区的一个用于创建NBD(访问网络块设备的协议)服务端的应用软件。 Libguestfs Nbdkit 存在安全漏洞,攻击者可利用该漏洞通过Nbdkit的STARTTLS NBD OPT STRUCTURED REPLY Injection造成致命错误,以触发拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A