CVE-2019-3804

N/A

It was found that cockpit before version 184 used glib's base64 decode functionality incorrectly resulting in a denial of service attack. An unauthenticated attacker could send a specially crafted request with an invalid base64-encoded cookie which could cause the web service to crash.

N/A

资源初始化缺失

Cockpit 安全漏洞

Cockpit是一个交互式服务器管理界面。 Cockpit中存在安全漏洞。攻击者可通过发送带有无效的base64加密cookie的请求利用该漏洞造成绝服务。

N/A

N/A