Lucene search
Veracode Vulnerability DatabaseVERACODE:41032HistoryJun 27, 2023 - 8:26 a.m.
Denial Of Service (DoS)
2023-06-2708:26:21
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
yarp.reverseproxy
dos
vulnerability
streamcopyhttpcontent.cs
denial of service
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
47.9%
Yarp.ReverseProxy is vulnerable to Denial of Service (DoS) attacks. The vulnerability exists due insufficient checks in StreamCopyHttpContent.cs, which allows an attacker to cause denial of service conditions.
| CPE | Name | Operator | Version |
|---|---|---|---|
| yarp.reverseproxy | le | 1.1.1 | |
| yarp.reverseproxy | le | 2.0.0 | |
| yarp.reverseproxy | le | 1.1.1 | |
| yarp.reverseproxy | le | 2.0.0 |
References
Related
mscve
mscve
Yet Another Reverse Proxy (YARP) Denial of Service Vulnerability
2023-06-13 07:00:00
github
github
YARP Denial of Service Vulnerability
2023-06-23 21:37:26
cvelist
cvelist
cve
cve
CVE-2023-33141
2023-06-23 02:15:09
osv
osv
YARP Denial of Service Vulnerability
2023-06-23 21:37:26
CVE-2023-33141
2023-06-23 02:15:09
nvd
nvd
CVE-2023-33141
2023-06-23 02:15:09
vulnrichment
vulnrichment
prion
prion
Denial of service
2023-06-23 02:15:00
avleonov
avleonov
kaspersky
kaspersky
KLA50317 Multiple vulnerabilities in Microsoft Developer Tools
2023-06-13 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - June 2023
2023-06-13 20:49:27
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
47.9%
Related for VERACODE:41032