Lucene search
GoogleOSV:GHSA-9959-6P3M-WXPCHistoryJun 30, 2020 - 9:01 p.m.
Denial of service in Netty
2020-06-3021:01:31
Google
osv.dev
20
0.011 Low
EPSS
Percentile
84.6%
The SslHandler in Netty before 3.9.2 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted SSLv2Hello message.
References
netty.io/news/2014/06/11/3-9-2-Final.html
secunia.com/advisories/59196
github.com/netty/netty
github.com/netty/netty/commit/2fa9400a59d0563a66908aba55c41e7285a04994
github.com/netty/netty/issues/2562
lists.debian.org/debian-lts-announce/2020/02/msg00018.html
nvd.nist.gov/vuln/detail/CVE-2014-3488
snyk.io/vuln/SNYK-JAVA-ORGJBOSSNETTY-31630
Related
debiancve
debiancve
CVE-2014-3488
2014-07-31 14:55:02
prion
prion
Design/Logic Flaw
2014-07-31 14:55:00
ubuntucve
ubuntucve
CVE-2014-3488
2014-07-31 00:00:00
nvd
nvd
CVE-2014-3488
2014-07-31 14:55:02
ibm
ibm
Security Bulletin: Rational Integration Tester component in Rational Test Workbench affected by Netty vulnerability (CVE-2014-3488)
2018-06-17 04:59:34
cve
cve
CVE-2014-3488
2014-07-31 14:55:02
github
github
Denial of service in Netty
2020-06-30 21:01:31
cvelist
cvelist
CVE-2014-3488
2014-07-31 14:00:00
nessus
nessus
Debian DLA-2110-1 : netty-3.9 security update
2020-02-20 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-2110-1)
2020-02-20 00:00:00
debian
debian
[SECURITY] [DLA 2110-1] netty-3.9 security update
2020-02-19 18:04:08
osv
osv
netty-3.9 - security update
2020-02-19 00:00:00
hackerone
hackerone