← volver
CVE-2021-36154

CVE-2021-36154

EPSS 2.1%
HTTP2ToRawGRPCServerCodec in gRPC Swift 1.1.1 and earlier allows remote attackers to deny service via the delivery of many small messages within a single HTTP/2 frame, leading to Uncontrolled Recursion and stack consumption.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35274https://github.com/grpc/grpc-swift/releaseshttps://github.com/grpc/grpc-swift/security/advisories/GHSA-4rhq-vq24-88gw