Unrated severityNVD Advisory· Published Dec 18, 2019· Updated Aug 4, 2024
CVE-2019-5152
CVE-2019-5152
Description
An exploitable information disclosure vulnerability exists in the network packet handling functionality of Shadowsocks-libev 3.3.2. When utilizing a Stream Cipher, a specially crafted set of network packets can cause an outbound connection from the server, resulting in information disclosure. An attacker can send arbitrary packets to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Shadowsocks-libev/Shadowsocks-libevdescription
- Range: =3.3.2
Patches
Vulnerability mechanics
References
1- talosintelligence.com/vulnerability_reports/TALOS-2019-0942mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.