CVSS: 5.3EPSS: 0%CPEs: 15EXPL: 1CVE-2014-3488
https://notcve.org/view.php?id=CVE-2014-3488
31 Jul 2014 — The SslHandler in Netty before 3.9.2 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted SSLv2Hello message. SslHandler en Netty anterior a 3.9.2 permite a atacantes remotos causar una denegación de servicio (bucle infinito y consumo de CPU) a través de un mensaje SSLv2Hello manipulado. • http://netty.io/news/2014/06/11/3-9-2-Final.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.3EPSS: 6%CPEs: 32EXPL: 0CVE-2014-0193 – netty: DoS via memory exhaustion during data aggregation
https://notcve.org/view.php?id=CVE-2014-0193
06 May 2014 — WebSocket08FrameDecoder in Netty 3.6.x before 3.6.9, 3.7.x before 3.7.1, 3.8.x before 3.8.2, 3.9.x before 3.9.1, and 4.0.x before 4.0.19 allows remote attackers to cause a denial of service (memory consumption) via a TextWebSocketFrame followed by a long stream of ContinuationWebSocketFrames. WebSocket08FrameDecoder en Netty 3.6.x anterior a 3.6.9, 3.7.x anterior a 3.7.1, 3.8.x anterior a 3.8.2, 3.9.x anterior a 3.9.1 y 4.0.x anterior a 4.0.19 permite a atacantes remotos causar una denegación de servicio (c... • http://netty.io/news/2014/04/30/release-day.html • CWE-399: Resource Management Errors CWE-400: Uncontrolled Resource Consumption •