Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-CQR7-78PJ-3G7J
HistoryOct 24, 2017 - 6:33 p.m.

File Descriptor Leak Can Cause DoS Vulnerability in hapi

2017-10-2418:33:36
Google
osv.dev
6

0.009 Low

EPSS

Percentile

82.5%

JSON

Versions 2.0.x and 2.1.x of hapi are vulnerable to a denial of service attack via a file descriptor leak.

When triggered repeatedly, this leak will cause the server to run out of file descriptors and the node process to die. The effort required to take down a server depends on the process file descriptor limit. No other side effects or exploits have been identified.

Recommendation

  • Please upgrade to version 2.2.x or above as soon as possible.
CPENameOperatorVersion
hapige2.0.0
hapilt2.2.0

Related

cve 1
cvelist 1
prion 1
nvd 1
nodejs 1
github 1
securityvulns 1
cve
cve
CVE-2014-3742
2014-05-16 15:55:05
cvelist
cvelist
CVE-2014-3742
2014-05-16 15:00:00
prion
prion
Hardcoded credentials
2014-05-16 15:55:00
nvd
nvd
CVE-2014-3742
2014-05-16 15:55:05
nodejs
nodejs
File Descriptor Leak Can Cause DoS Vulnerability
2015-10-17 19:41:46
github
github
File Descriptor Leak Can Cause DoS Vulnerability in hapi
2017-10-24 18:33:36
securityvulns
securityvulns
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2014-05-15 00:00:00

0.009 Low

EPSS

Percentile

82.5%

JSON
Related for OSV:GHSA-CQR7-78PJ-3G7J
cve1cvelist1prion1nvd1nodejs1github1securityvulns1