CVE-2016-7835

CVE-2016-7835

EPSS 2.2%

Use-after-free vulnerability in H2O allows remote attackers to cause a denial-of-service (DoS) or obtain server certificate private keys and possibly other information.

Affected products

Kazuho Oku · H2O

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/h2o/h2o/issues/1144 https://jvn.jp/en/jp/JVN44566208/index.html http://www.securityfocus.com/bid/95061