Security Advisory

CVE-2019-3804

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-03-26 00:00:00

Last updated 2024-08-04 19:19:18

Assigner redhat

State PUBLISHED

Description

It was found that cockpit before version 184 used glibs base64 decode functionality incorrectly resulting in a denial of service attack. An unauthenticated attacker could send a specially crafted request with an invalid base64-encoded cookie which could cause the web service to crash.

← Browse all CVEs View on cve.org ↗