CVE-2010-3198

Zope Denial of Service (DoS) vulnerability in ZServer in pypi/zope

Identifiers

GHSA-qh4q-fwf8-qqrw, CVE-2010-3198

Package Slug

pypi/zope

Vulnerability

Zope Denial of Service (DoS) vulnerability in ZServer

Description

ZServer in Zope 2.10.x before 2.10.12 and 2.11.x before 2.11.7 allows remote attackers to cause a denial of service (crash of worker threads) via vectors that trigger uncaught exceptions.

Affected Versions

All versions starting from 2.10.0 before 2.10.12, all versions starting from 2.11.0 before 2.11.7

Solution

Upgrade to versions 2.10.12, 2.11.7 or above.

Last Modified

2024-02-19

source