CVE-2024-45338 | x-net-html up to 0.32.x on Go Parse amplification

Posted by Angelo Barbosa | Dec 18, 2024 | CVE

A vulnerability was found in x-net-html up to 0.32.x on Go. It has been classified as problematic. Affected is an unknown function of the component Parse Handler. The manipulation leads to asymmetric resource consumption.

This vulnerability is traded as CVE-2024-45338. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45338 | x-net-html up to 0.32.x on Go Parse amplification

Related Posts

CVE-2024-21536 | http-proxy-middleware up to 2.0.6/3.0.2 resource consumption (SNYK-JS-HTTPPROXYMIDDLEWARE-8229906)

CVE-2024-26985 | Linux Kernel up to 6.8.7/6.9-rc4 DRM intel_fb_bo_framebuffer_init buffer overflow (7d8ac0942c31/652ead9b746a)

CVE-2024-9559 | D-Link DIR-605L 2.13B01 BETA /goform/formWlanSetup webpage buffer overflow

CVE-2024-50459 | HM Plugin Stripe Donation and Payment Plugin up to 3.2.3 on WordPress authorization