CVE-2014-3742

The hapi server framework 2.0.x and 2.1.x before 2.2.0 for Node.js allows remote attackers to cause a denial of service (file descriptor consumption and process crash) via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 72%
Affected Products (NVD)
VendorProductVersion
spumko_projecthapi_server_framework
2.0.0
spumko_projecthapi_server_framework
2.0.0:preview
spumko_projecthapi_server_framework
2.1.1
spumko_projecthapi_server_framework
2.1.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.openwall.com/lists/oss-security/2014/05/13/1
http://www.openwall.com/lists/oss-security/2014/05/15/2
https://github.com/spumko/hapi/issues/1427
https://nodesecurity.io/advisories/hapi_File_descriptor_leak_DoS_vulnerability
http://www.openwall.com/lists/oss-security/2014/05/13/1
http://www.openwall.com/lists/oss-security/2014/05/15/2
https://github.com/spumko/hapi/issues/1427
https://nodesecurity.io/advisories/hapi_File_descriptor_leak_DoS_vulnerability