CVE-2024-7592
CVE-2024-7592
Título es
CVE-2024-7592
Lun, 19/08/2024 – 19:15
Tipo
CWE-400
Gravedad 2.0 Txt
Pendiente de análisis
Título en
CVE-2024-7592
Descripción en
There is a LOW severity vulnerability affecting CPython, specifically the
'http.cookies' standard library module.
'http.cookies' standard library module.
When parsing cookies that contained backslashes for quoted characters in
the cookie value, the parser would use an algorithm with quadratic
complexity, resulting in excess CPU resources being used while parsing the
value.
19/08/2024
19/08/2024
Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
Pendiente de análisis
Referencias
Enviar en el boletín
Off