How severe is CVE-2017-1000098?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.5 out of 10.

What type of vulnerability is CVE-2017-1000098?

This is classified as CWE-769, which is a common weakness in software security.

CVE-2017-1000098

HIGH Year: 2017

CVSS v3 Score

7.5

High

CVSS v2 Score

5.0

Medium

Weakness Type

CWE-769

View all →

Vulnerability Description

The net/http package's Request.ParseMultipartForm method starts writing to temporary files once the request body size surpasses the given "maxMemory" limit. It was possible for an attacker to generate a multipart request crafted such that the server ran out of file descriptors.

CVE-2018-0358

HIGH

CVSS:7.5(High)

A vulnerability in the file descriptor handling of Cisco TelePresence Video Communication Server (VCS) Expressway could allow an unauthenticated, remote attacker to cause a denial of service (DoS) con...

CWE-7692018

CVE-2018-0358

HIGH

CVSS:7.5(High)

CWE-7692018

CVE-2017-1000098

Vulnerability Description

Related Vulnerabilities

CVE-2018-0358

CVE-2018-0358