cve/CVE-2021-42697.md at f0ac04d7677853df048666db730bdfce74d87780

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Akka HTTP 10.1.x before 10.1.15 and 10.2.x before 10.2.7 can encounter stack exhaustion while parsing HTTP headers, which allows a remote attacker to conduct a Denial of Service attack by sending a User-Agent header with deeply nested comments.

POC

Reference

http://packetstormsecurity.com/files/167018/Akka-HTTP-10.1.14-Denial-Of-Service.html

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/NaInSec/CVE-PoC-in-GitHub
https://github.com/SYRTI/POC_to_review
https://github.com/WhooAmii/POC_to_review
https://github.com/cxosmo/CVE-2021-42697
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/trhacknon/Pocingit
https://github.com/zecool/cve

1.0 KiB Raw Blame History

CVE-2021-42697

Description

POC

Reference

Github

1.0 KiB

Raw Blame History