CVE-2017-7687
HIGH7.5EPSS 3.2%Denial of service in Apache Mesos
發布日:2022/5/13修改日:2024/11/28
描述
When handling a decoding failure for a malformed URL path of an HTTP request, libprocess in Apache Mesos might crash because the code accidentally calls inappropriate function. A malicious actor can therefore cause a denial of service of Mesos masters rendering the Mesos-controlled cluster inoperable.
受影響套件(1)
- Maven/org.apache.mesos:mesosfrom 0, < 1.1.3
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |