CVE-2022-39294HIGHCVSS 7.5v>= 0.2.0-alpha.3, < 0.4.22022-10-31
CVE-2022-39294 [HIGH] CWE-400 CVE-2022-39294: conduit-hyper integrates a conduit application with the hyper server. Prior to version 0.4.2, `condu
conduit-hyper integrates a conduit application with the hyper server. Prior to version 0.4.2, `conduit-hyper` did not check any limit on a request's length before calling [`hyper::body::to_bytes`](https://docs.rs/hyper/latest/hyper/body/fn.to_bytes.html). An attacker could send a malicious request with an abnormally large `Content-Length`, which could
nvd