漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Denial of Service (DoS) via Multipart Boundary in stangirard/quivr
Vulnerability Description
A Denial of Service (DoS) vulnerability in the file upload feature of stangirard/quivr v0.0.298 allows unauthenticated attackers to cause excessive resource consumption by appending characters to the end of a multipart boundary in an HTTP request. This leads to the server continuously processing each character, rendering the service unavailable and impacting all users.
CVSS Information
N/A
Vulnerability Type
不加限制或调节的资源分配
Vulnerability Title
Quivr 资源管理错误漏洞
Vulnerability Description
Quivr是Quivr开源的一个人工智能应用程序。 Quivr v0.0.298版本存在资源管理错误漏洞,该漏洞源于文件上传功能中多部分边界字符追加导致资源消耗过多,可能导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A