Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Go
Published: 2022-12-27T21:13:24.222Z
Updated: 2024-08-05T03:00:18.952Z
Reserved: 2022-07-29T17:10:15.500Z
Link: CVE-2019-25072
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-12-27T22:15:11.323
Modified: 2023-11-07T03:09:16.680
Link: CVE-2019-25072
Redhat
No data.