Swiftnio Extras
by Swift
Source repositories
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-3215 | 0.00 | — | 0.01 | Sep 28, 2022 | NIOHTTP1 and projects using it for generating HTTP responses can be subject to a HTTP Response Injection attack. This occurs when a HTTP/1.1 server accepts user generated input from an incoming request and reflects it into a HTTP/1.1 response header in some form. A malicious… | |||
| CVE-2022-3252 | 0.00 | — | 0.01 | Sep 21, 2022 | Improper detection of complete HTTP body decompression SwiftNIO Extras provides a pair of helpers for transparently decompressing received HTTP request or response bodies. These two objects (HTTPRequestDecompressor and HTTPResponseDecompressor) both failed to detect when the… | |||
| CVE-2020-9840 | 0.00 | — | 0.01 | May 11, 2020 | In SwiftNIO Extras before 1.4.1, a logic issue was addressed with improved restrictions. |
- CVE-2022-3215Sep 28, 2022risk 0.00cvss —epss 0.01
NIOHTTP1 and projects using it for generating HTTP responses can be subject to a HTTP Response Injection attack. This occurs when a HTTP/1.1 server accepts user generated input from an incoming request and reflects it into a HTTP/1.1 response header in some form. A malicious…
- CVE-2022-3252Sep 21, 2022risk 0.00cvss —epss 0.01
Improper detection of complete HTTP body decompression SwiftNIO Extras provides a pair of helpers for transparently decompressing received HTTP request or response bodies. These two objects (HTTPRequestDecompressor and HTTPResponseDecompressor) both failed to detect when the…
- CVE-2020-9840May 11, 2020risk 0.00cvss —epss 0.01
In SwiftNIO Extras before 1.4.1, a logic issue was addressed with improved restrictions.