📦

wangle

Vendor: facebook

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 1 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 0.38% Exploit Prob.

Latest CVE CVE-2019-3563 Apr 29

Security Vulnerability Index

Page 1 / 1

9.8 CVSS

CVE-2019-3563

RCE

Wangle's LineBasedFrameDecoder contains logic for identifying newlines which incorrectly advances a buffer, leading to a potential underflow. This affects versions of Wangle prior to v2019.04.22.00

EPSS: 0.43%

Severity: CRITICAL

Apr 29, 2019

5.9 CVSS

CVE-2019-3554

Wangle's AcceptRoutingHandler incorrectly casts a socket when accepting a TLS 1.3 connection, leading to a potential denial of service attack against systems accepting such connections. This affects versions of Wangle prior to v2019.01.14.00

EPSS: 0.33%

Severity: MEDIUM

Jan 15, 2019

Displaying 2 of 2 Total Entries

Total 1 Sections