Wangle's LineBasedFrameDecoder contains logic for identifying newlines which incorrectly advances a buffer, leading to a potential underflow. This affects versions of Wangle prior to v2019.04.22.00
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HFacebook Wangle
APPFacebook< 2019.04.22.00
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Powiązane podatności
CVE-2019-3554MEDIUM5.9ten sam produkt
Wangle's AcceptRoutingHandler incorrectly casts a socket when accepting a TLS 1.3 connection, leading to a pot...
CVE-2025-55182CRITICAL10.0⚠ KEVPL ✓ten sam vendor
RCE bez uwierzytelnienia w React Server Components (deserializacja)
CVE-2023-45239CRITICAL9.8ten sam vendor
A lack of input validation exists in tac_plus prior to commit 4fdf178 which, when pre or post auth commands ar...
CVE-2023-23556CRITICAL9.8ten sam vendor
An error in BigInt conversion to Number in Hermes prior to commit a6dcafe6ded8e61658b40f5699878cd19a481f80 cou...
CVE-2023-23557CRITICAL9.8ten sam vendor
An error in Hermes' algorithm for copying objects properties prior to commit a00d237346894c6067a594983be6634f4...