MEDIUM🇵🇱 Wersja polska

CVE-2019-3554

CVSS 5.9v3.0pub. 2019-01-15upd. 2024-11-21

Wangle's AcceptRoutingHandler incorrectly casts a socket when accepting a TLS 1.3 connection, leading to a potential denial of service attack against systems accepting such connections. This affects versions of Wangle prior to v2019.01.14.00

CVSS Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Facebook Wangle

    APP
    Facebook
    < 2019.01.14.00
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2019-3563CRITICAL9.8ten sam produkt

Wangle's LineBasedFrameDecoder contains logic for identifying newlines which incorrectly advances a buffer, le...

CVE-2025-55182CRITICAL10.0⚠ KEVPL ✓ten sam vendor

RCE bez uwierzytelnienia w React Server Components (deserializacja)

CVE-2023-45239CRITICAL9.8ten sam vendor

A lack of input validation exists in tac_plus prior to commit 4fdf178 which, when pre or post auth commands ar...

CVE-2023-23556CRITICAL9.8ten sam vendor

An error in BigInt conversion to Number in Hermes prior to commit a6dcafe6ded8e61658b40f5699878cd19a481f80 cou...

CVE-2023-23557CRITICAL9.8ten sam vendor

An error in Hermes' algorithm for copying objects properties prior to commit a00d237346894c6067a594983be6634f4...