CVE-2019-3554

Summary

Wangle's AcceptRoutingHandler incorrectly casts a socket when accepting a TLS 1.3 connection, leading to a potential denial of service attack against systems accepting such connections. This affects versions of Wangle prior to v2019.01.14.00

Affected Software

VendorProductVersion RangeStatus
FacebookWanglev2019.01.14.00affected
FacebookWangleunspecified < v2019.01.14.00affected

Weaknesses

  • CWE-400: Denial of Service (CWE-400)

ADP Enrichment

CVE Program Container

Additional References

References