An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service.
Metrics
Affected Vendors & Products
References
History
Sat, 21 Dec 2024 02:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-770 | |
References |
| |
Metrics |
threat_severity
|
cvssV3_1
|
Wed, 18 Dec 2024 20:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service. | |
Title | Non-linear parsing of case-insensitive content in golang.org/x/net/html | |
References |
|
MITRE
Status: PUBLISHED
Assigner: Go
Published: 2024-12-18T20:38:22.660Z
Updated: 2024-12-18T20:38:22.660Z
Reserved: 2024-08-27T19:41:58.555Z
Link: CVE-2024-45338
Vulnrichment
No data.
NVD
Status : Received
Published: 2024-12-18T21:15:08.173
Modified: 2024-12-18T21:15:08.173
Link: CVE-2024-45338
Redhat