fkie_nvd - fkie_cve-2024-1300

fkie_cve-2024-1300

Vulnerability from fkie_nvd

Published

2024-04-02 08:15

Modified

2024-11-25 03:15

Severity ?

5.4 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Summary

A vulnerability in the Eclipse Vert.x toolkit causes a memory leak in TCP servers configured with TLS and SNI support. When processing an unknown SNI server name assigned the default certificate instead of a mapped certificate, the SSL context is erroneously cached in the server name map, leading to memory exhaustion. This flaw allows attackers to send TLS client hello messages with fake server names, triggering a JVM out-of-memory error.

References

▶	URL	Tags
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:1662
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:1706
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:1923
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:2088
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:2833
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:3527
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:3989
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:4884
	secalert@redhat.com	https://access.redhat.com/security/cve/CVE-2024-1300
	secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=2263139
	secalert@redhat.com	https://vertx.io/docs/vertx-core/java/#_server_name_indication_sni.
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:1662
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:1706
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:1923
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:2088
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:2833
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:3527
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:3989
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:4884
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/security/cve/CVE-2024-1300
	af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=2263139
	af854a3a-2127-422b-91ae-364da2661108	https://vertx.io/docs/vertx-core/java/#_server_name_indication_sni.

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in the Eclipse Vert.x toolkit causes a memory leak in TCP servers configured with TLS and SNI support. When processing an unknown SNI server name assigned the default certificate instead of a mapped certificate, the SSL context is erroneously cached in the server name map, leading to memory exhaustion. This flaw allows attackers to send TLS client hello messages with fake server names, triggering a JVM out-of-memory error."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad en Eclipse Vert.x toolkit provoca una p\u00e9rdida de memoria en servidores TCP configurados con soporte TLS y SNI. Al procesar un nombre de servidor SNI desconocido al que se le asigna el certificado predeterminado en lugar de un certificado asignado, el contexto SSL se almacena en cach\u00e9 por error en el mapa de nombres del servidor, lo que provoca que se agote la memoria. Esta falla permite a los atacantes enviar mensajes de saludo al cliente TLS con nombres de servidor falsos, lo que provoca un error de falta de memoria de JVM."
    }
  ],
  "id": "CVE-2024-1300",
  "lastModified": "2024-11-25T03:15:10.053",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 5.4,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 2.5,
        "source": "secalert@redhat.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2024-04-02T08:15:53.993",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:1662"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:1706"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:1923"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:2088"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:2833"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:3527"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:3989"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:4884"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/security/cve/CVE-2024-1300"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263139"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://vertx.io/docs/vertx-core/java/#_server_name_indication_sni."
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:1662"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:1706"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:1923"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:2088"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:2833"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:3527"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:3989"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:4884"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/security/cve/CVE-2024-1300"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263139"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://vertx.io/docs/vertx-core/java/#_server_name_indication_sni."
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-401"
        }
      ],
      "source": "secalert@redhat.com",
      "type": "Secondary"
    }
  ]
}

CVE-2024-1300 (GCVE-0-2024-1300)

Vulnerability from cvelistv5

Published

2024-04-02 07:33

Modified

2025-08-12 17:02

Severity ?

5.4 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

CWE

CWE-401 - Missing Release of Memory after Effective Lifetime

Summary

References

►

URL

Tags

	https://access.redhat.com/errata/RHSA-2024:1662	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:1706	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:1923	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:2088	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:2833	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:3527	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:3989	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4884	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/security/cve/CVE-2024-1300	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2263139	issue-tracking, x_refsource_REDHAT
	https://vertx.io/docs/vertx-core/java/#_server_name_indication_sni.

Impacted products

Vendor

Product

Version

►

Version: 4.3.4 ≤ 4.5.2

Red Hat	CEQ 3.2	cpe:/a:redhat:camel_quarkus:3
Red Hat	Cryostat 2 on RHEL 8	Unaffected: 2.4.0-7 < * cpe:/a:redhat:cryostat:2::el8
Red Hat	Cryostat 2 on RHEL 8	Unaffected: 2.4.0-4 < * cpe:/a:redhat:cryostat:2::el8
Red Hat	Cryostat 2 on RHEL 8	Unaffected: 2.4.0-4 < * cpe:/a:redhat:cryostat:2::el8
Red Hat	Cryostat 2 on RHEL 8	Unaffected: 2.4.0-4 < * cpe:/a:redhat:cryostat:2::el8
Red Hat	Cryostat 2 on RHEL 8	Unaffected: 2.4.0-9 < * cpe:/a:redhat:cryostat:2::el8
Red Hat	Cryostat 2 on RHEL 8	Unaffected: 2.4.0-4 < * cpe:/a:redhat:cryostat:2::el8
Red Hat	Migration Toolkit for Runtimes 1 on RHEL 8	Unaffected: 1.2-18 < * cpe:/a:redhat:migration_toolkit_runtimes:1.0::el8
Red Hat	Migration Toolkit for Runtimes 1 on RHEL 8	Unaffected: 1.2-11 < * cpe:/a:redhat:migration_toolkit_runtimes:1.0::el8
Red Hat	Migration Toolkit for Runtimes 1 on RHEL 8	Unaffected: 1.2-12 < * cpe:/a:redhat:migration_toolkit_runtimes:1.0::el8
Red Hat	Migration Toolkit for Runtimes 1 on RHEL 8	Unaffected: 1.2-10 < * cpe:/a:redhat:migration_toolkit_runtimes:1.0::el8
Red Hat	MTA-6.2-RHEL-9	Unaffected: 6.2.3-2 < * cpe:/a:redhat:migration_toolkit_applications:6.2::el8 cpe:/a:redhat:migration_toolkit_applications:6.2::el9
Red Hat	Red Hat AMQ Streams 2.7.0	cpe:/a:redhat:amq_streams:2
Red Hat	Red Hat build of Apache Camel 4.4.1 for Spring Boot 3.2	cpe:/a:redhat:apache_camel_spring_boot:4.4::el6
Red Hat	Red Hat build of Quarkus 3.2.11.Final	Unaffected: 4.4.8.redhat-00001 < * cpe:/a:redhat:quarkus:3.2::el8
Red Hat	RHINT Service Registry 2.5.11 GA	cpe:/a:redhat:service_registry:2.5
Red Hat	A-MQ Clients 2	cpe:/a:redhat:a_mq_clients:2
Red Hat	OpenShift Serverless	cpe:/a:redhat:serverless:1
Red Hat	Red Hat AMQ Broker 7	cpe:/a:redhat:amq_broker:7
Red Hat	Red Hat build of Apache Camel for Spring Boot 3	cpe:/a:redhat:camel_spring_boot:3
Red Hat	Red Hat Build of Keycloak	cpe:/a:redhat:build_keycloak:
Red Hat	Red Hat build of OptaPlanner 8	cpe:/a:redhat:optaplanner:::el6
Red Hat	Red Hat build of Quarkus	cpe:/a:redhat:quarkus:2
Red Hat	Red Hat Data Grid 8	cpe:/a:redhat:jboss_data_grid:8
Red Hat	Red Hat Fuse 7	cpe:/a:redhat:jboss_fuse:7
Red Hat	Red Hat Integration Camel K 1	cpe:/a:redhat:integration:1
Red Hat	Red Hat Integration Camel Quarkus 2	cpe:/a:redhat:camel_quarkus:2
Red Hat	Red Hat JBoss Data Grid 7	cpe:/a:redhat:jboss_data_grid:7
Red Hat	Red Hat JBoss Enterprise Application Platform 7	cpe:/a:redhat:jboss_enterprise_application_platform:7
Red Hat	Red Hat JBoss Enterprise Application Platform 8	cpe:/a:redhat:jboss_enterprise_application_platform:8
Red Hat	Red Hat JBoss Enterprise Application Platform Expansion Pack	cpe:/a:redhat:jbosseapxp
Red Hat	Red Hat Process Automation 7	cpe:/a:redhat:jboss_enterprise_bpms_platform:7

Show details on NVD website