Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Possible DOS vulnerabilities in C# Avro SDK
Vulnerability Description
A vulnerability in the .NET SDK of Apache Avro allows an attacker to allocate excessive resources, potentially causing a denial-of-service attack. This issue affects .NET applications using Apache Avro version 1.10.2 and prior versions. Users should update to version 1.11.0 which addresses this issue.
CVSS Information
N/A
Vulnerability Type
不加限制或调节的资源分配
Vulnerability Title
Apache Avro 资源管理错误漏洞
Vulnerability Description
Apache Avro是美国阿帕奇(Apache)基金会的一个数据序列化系统。为 Apache Hadoop 提供数据序列化和数据交换服务。 Apache Avro 中存在资源管理错误漏洞,该漏洞源于产品的.net SDK组件未对分配资源量进行有效限制。攻击者可通过该漏洞分配过多资源导致拒绝服务。以下产品及版本受到影响: Apache Avro 1.10.2 版本及之前版本。
CVSS Information
N/A
Vulnerability Type
N/A