CVE-2013-0486Missing Release of Memory after Effective Lifetime in IBM Lotus Domino

CWE-3993 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.7%
top 28.37%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Lotus Domino
Timeline
PublishedMar 27
Latest updateMay 5

Description

Memory leak in the HTTP server in IBM Domino 8.5.x allows remote attackers to cause a denial of service (memory consumption and daemon crash) via GET requests, aka SPR KLYH92NKZY.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDibm/lotus_domino16 versions+15

🔴Vulnerability Details

2
GHSA
GHSA-g8h9-h9cp-c993: Memory leak in the HTTP server in IBM Domino 82022-05-05
CVEList
CVE-2013-0486: Memory leak in the HTTP server in IBM Domino 82013-03-27
CVE-2013-0486 — IBM Lotus Domino vulnerability | cvebase