Apple Swiftnio

10 CVEs affecting Apple Swiftnio. Latest disclosed: 2022-09-28. Critical: 1, High: 8.

Top CVEs affecting Apple Swiftnio
CVESeverityScorePublishedSummary
CVE-2018-4281Critical9.82019-01-11In SwiftNIO before 1.8.0, a buffer overflow was addressed with improved size validation.
CVE-2022-3215High7.52022-09-28NIOHTTP1 and projects using it for generating HTTP responses can be subject to a HTTP Response Injection attack. This occurs when a HTTP/1.1 server accepts use…
CVE-2019-9518High7.52019-08-13Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a denial of service. The attacker sends a stream of frames with a…
CVE-2019-9517High7.52019-08-13Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of service. The attacker opens the HTTP/2 w…
CVE-2019-9515High7.52019-08-13Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial of service. The attacker sends a stream of SETTINGS frames to t…
CVE-2019-9514High7.52019-08-13Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an in…
CVE-2019-9513High7.52019-08-13Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and con…
CVE-2019-9512High7.52019-08-13Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, ca…
CVE-2019-9511High7.52019-08-13Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The…
CVE-2019-9516Medium6.52019-08-13Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length…