OpenAFS Denial of Service Vulnerability in VOTE_Debug RPC Handler

OpenAFS Denial of Service Vulnerability in VOTE_Debug RPC Handler

CVE-2019-18601 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to denial of service from unserialized data access because remote attackers can make a series of VOTE_Debug RPC calls to crash a database server within the SVOTE_Debug RPC handler.

Learn more about our Cis Benchmark Audit For Server Software.