Lucene search
Redhat.comRH:CVE-2017-11499HistoryMar 23, 2020 - 2:08 a.m.
CVE-2017-11499
2020-03-2302:08:59
redhat.com
access.redhat.com
5
0.009 Low
EPSS
Percentile
82.5%
It was found that Node.js was using a non-randomized seed when populating hash tables. An attacker, able to supply a large number of inputs, could send specially crafted entries to the Node.js application, maximizing hash collisions to trigger an excessive amount of CPU usage, resulting in a denial of service.
Related
redhat
redhat
(RHSA-2017:3002) Moderate: rh-nodejs4-nodejs security and bug fix update
2017-10-23 09:00:22
(RHSA-2017:2908) Moderate: rh-nodejs6-nodejs security update
2017-10-18 07:32:26
ibm
ibm
openvas
openvas
Elastic Kibana 'CVE-2017-11499' DoS Vulnerability - Linux
2018-03-02 00:00:00
Elastic Kibana 'CVE-2017-11499' DoS Vulnerability - Windows
2018-03-02 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:2168-1)
2021-06-09 00:00:00
osv
osv
CVE-2017-11499
2017-07-25 13:29:00
ubuntucve
ubuntucve
CVE-2017-11499
2017-07-25 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:20:31
nessus
nessus
RHEL 6 / 7 : rh-nodejs4-nodejs (RHSA-2017:3002)
2024-04-27 00:00:00
openSUSE Security Update : nodejs4 / nodejs6 (openSUSE-2017-948)
2017-08-18 00:00:00
SUSE SLES12 Security Update : nodejs4, nodejs6 (SUSE-SU-2017:2168-1)
2019-01-02 00:00:00
debiancve
debiancve
CVE-2017-11499
2017-07-25 13:29:00
cvelist
cvelist
CVE-2017-11499
2017-07-25 13:00:00
nvd
nvd
CVE-2017-11499
2017-07-25 13:29:00
cve
cve
CVE-2017-11499
2017-07-25 13:29:00
prion
prion
Default credentials
2017-07-25 13:29:00
nodejsblog
nodejsblog
Security updates for all active release lines, July 2017
2017-07-11 00:00:00