CVE-2024-29186 | brefphp bref up to 2.1.16 parseHeaderContent resource consumption (GHSA-j4hq-f63x-f39r)

Posted by Angelo Barbosa | Mar 22, 2024 | CVE

A vulnerability, which was classified as problematic, was found in brefphp bref up to 2.1.16. Affected is the function StreamedPart::parseHeaderContent. The manipulation leads to resource consumption.

This vulnerability is traded as CVE-2024-29186. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29186 | brefphp bref up to 2.1.16 parseHeaderContent resource consumption (GHSA-j4hq-f63x-f39r)

Related Posts

CVE-2024-34794 | Tainacan.org Tainacan Plugin up to 0.21.3 on WordPress cross site scripting

CVE-2024-38771 | Atarim Plugin up to 4.0 on WordPress authorization

CVE-2024-48929 | Umbraco CMS up to 10.8.6/13.5.1 Sign-Out session fixiation (GHSA-wxw9-6pv9-c3xc)

CVE-2024-9667 | Seriously Simple Podcasting Plugin up to 3.5.0 on WordPress add_query_arg cross site scripting