Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Tungstenite crate before 0.20.1 for Rust allows remote attackers to cause a denial of service (minutes of CPU consumption) via an excessive length of an HTTP header in a client handshake. The length affects both how many times a parse is attempted (e.g., thousands of times) and the average amount of data for each parse attempt (e.g., millions of bytes).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Tungstenite 安全漏洞
Vulnerability Description
Snapview GmbH Tungstenite是Snapview GmbH公司的一个库。 Tungstenite 0.20.0及之前版本存在安全漏洞,该漏洞源于允许攻击者通过加长客户端握手中的HTTP标头造成拒绝服务(DoS)。
CVSS Information
N/A
Vulnerability Type
N/A