Metrics
Affected Vendors & Products
Thu, 12 Sep 2024 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Eclipse
Eclipse vert.x |
|
CPEs | cpe:2.3:a:eclipse:vert.x:*:*:*:*:*:*:*:* | |
Vendors & Products |
Eclipse
Eclipse vert.x |
|
Metrics |
cvssV3_1
|
cvssV3_1
|
Wed, 04 Sep 2024 21:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
| |
Metrics |
threat_severity
|
cvssV3_1
|
Wed, 04 Sep 2024 16:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Eclipse Foundation
Eclipse Foundation vert.x |
|
CPEs | cpe:2.3:a:eclipse_foundation:vert.x:*:*:*:*:*:*:*:* | |
Vendors & Products |
Eclipse Foundation
Eclipse Foundation vert.x |
|
Metrics |
ssvc
|
Wed, 04 Sep 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | In Eclipse Vert.x version 4.3.0 to 4.5.9, the gRPC server does not limit the maximum length of message payload (Maven GAV: io.vertx:vertx-grpc-server and io.vertx:vertx-grpc-client). This is fixed in the 4.5.10 version. Note this does not affect the Vert.x gRPC server based grpc-java and Netty libraries (Maven GAV: io.vertx:vertx-grpc) | |
Title | Eclipse Vert.x gRPC server does not limit the maximum message size | |
Weaknesses | CWE-770 | |
References |
| |
Metrics |
cvssV4_0
|
Status: PUBLISHED
Assigner: eclipse
Published: 2024-09-04T15:27:58.478Z
Updated: 2024-09-04T17:40:20.318Z
Reserved: 2024-09-03T12:39:46.456Z
Link: CVE-2024-8391
Updated: 2024-09-04T15:58:33.500Z
Status : Analyzed
Published: 2024-09-04T16:15:09.253
Modified: 2024-09-12T16:44:01.247
Link: CVE-2024-8391