CVE-2023-46136

HIGH EPSS 60.7%
Published Oct 25, 20232y ago · Modified Jun 17, 20261w ago
7.5 CVSS 3.1
High
Find Similar
Published Oct 25, 2023 2y ago
Last Modified Jun 17, 2026 1w ago

Description

Werkzeug is a comprehensive WSGI web application library. In versions on the 3.x branch prior to 3.0.1 and on the 2.x branch prior to 2.3.8, if an upload of a file that starts with CR or LF and then is followed by megabytes of data without these characters: all of these bytes are appended chunk by chunk into internal bytearray and lookup for boundary is performed on growing buffer. This allows an attacker to cause a denial of service by sending crafted multipart data to an endpoint that will parse it. The amount of CPU time required can block worker processes from handling legitimate requests. This vulnerability has been patched in version 3.0.1 and 2.3.8.

CVSS Details

Base Score
7.5
Exploitability
3.9
Impact
3.6
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
60.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 3

CWE-400 Uncontrolled Resource Consumption Resource Mgmt
CWE-407
CWE-787 Out-of-bounds Write Memory Safety

Affected Products 2

VendorProductVersionRange
palletsprojectswerkzeug* <2.3.8
palletsprojectswerkzeug3.0.0any

References 3

  • github.com https://github.com/pallets/werkzeug/commit/f3c803b3ade485a45f12b6d6617595350c0f03e2
    Patch
  • github.com https://github.com/pallets/werkzeug/security/advisories/GHSA-hrfv-mqp8-q5rw
    Vendor Advisory
  • security.netapp.com https://security.netapp.com/advisory/ntap-20231124-0008/
    Third Party Advisory

Remediation

  • github.com https://github.com/pallets/werkzeug/commit/f3c803b3ade485a45f12b6d6617595350c0f03e2
    Patch