CVE-2018-16844 in Xcodeinfo

Summary

nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the 'http2' option of the 'listen' directive is used in a configuration file.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Responsible

Red Hat, Inc.

Reservation

09/11/2018

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
183163	Apple Xcode IDE Xcode Server resource consumption	400	Not defined	Official fix	CVE-2018-16844
126524	nginx HTTP/2 resource consumption	400	Not defined	Official fix	CVE-2018-16844

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Do you need the next level of professionalism?

Upgrade your account now!