CVE-2024-29186 | brefphp bref up to 2.1.16 parseHeaderContent resource consumption (GHSA-j4hq-f63x-f39r)

Posted by Angelo Barbosa | Mar 22, 2024 | CVE

A vulnerability, which was classified as problematic, was found in brefphp bref up to 2.1.16. Affected is the function StreamedPart::parseHeaderContent. The manipulation leads to resource consumption.

This vulnerability is traded as CVE-2024-29186. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29186 | brefphp bref up to 2.1.16 parseHeaderContent resource consumption (GHSA-j4hq-f63x-f39r)

Related Posts

CVE-2024-20358 | Cisco ASA/Firepower Threat Defense command injection (cisco-sa-asaftd-cmd-inj-ZJV8Wysm)

CVE-2024-29090 | Jordy Meow AI Engine Plugin up to 2.1.4 on WordPress server-side request forgery

CVE-2024-4758 | Muslim Prayer Time BD Plugin up to 2.4 on WordPress Setting cross-site request forgery

CVE-2024-28237 | OctoPrint up to 1.9.3/1.10.0rc2 URL cross site scripting (GHSA-x7mf-wrh9-r76c)