Fluid Attacks Database

Description

ws is an open source WebSocket client and server for Node.js. A request with a number of headers exceeding theserver.maxHeadersCount threshold could be used to crash a ws server. The vulnerability was fixed in [email protected] (e55e510) and backported to [email protected] (22c2876), [email protected] (eeb76d3), and [email protected] (4abd8f6). In vulnerable versions of ws, the issue can be mitigated in the following ways: 1. Reduce the maximum allowed length of the request headers using the --max-http-header-size=size and/or the maxHeaderSize options so that no more headers than the server.maxHeadersCount limit can be sent. 2. Set server.maxHeadersCount to 0 so that no limit is applied.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 13	node-ws	>=0 <8.18.0+~cs13.7.11-1	8.18.0+~cs13.7.11-1
debian 11	node-ws	=7.4.2+~cs18.0.8-2 \|\| =7.5.5+~cs13.0.13-1 \|\| =8.10.0+~cs13.7.3-1 \|\| =8.11.0+~cs13.7.3-1 \|\| =8.11.0+~cs13.7.3-2 \|\| =8.18.0+~cs13.7.11-1 \|\| =8.18.0+~cs14.5.15-1 \|\| =8.18.1+~cs14.18.2-1 \|\| =8.19.0+~cs14.19.1-1 \|\| =8.5.0+~cs13.3.3-1 \|\| =8.5.0+~cs13.3.3-2 \|\| =8.6.0+~cs13.6.3-1 \|\| =8.8.0+~cs13.6.3-1 \|\| =8.8.1+~cs13.7.3-1	-
debian 12	node-ws	=8.11.0+~cs13.7.3-1 \|\| =8.11.0+~cs13.7.3-2 \|\| =8.18.0+~cs13.7.11-1 \|\| =8.18.0+~cs14.5.15-1 \|\| =8.18.1+~cs14.18.2-1 \|\| =8.19.0+~cs14.19.1-1	-
debian 14	node-ws	>=0 <8.18.0+~cs13.7.11-1	8.18.0+~cs13.7.11-1
npm	ws	>=2.1.0 <5.2.4 \|\| >=6.0.0 <6.2.3 \|\| >=7.0.0 <7.5.10 \|\| >=8.0.0 <8.17.1	5.2.4, 6.2.3, 7.5.10, 8.17.1
rpm rhel9	dotnet7.0	-	-
rpm rhel7	dotnet6.0	-	-
rpm rhel9	ceph	-	-

Aliases

1. CVE-2024-378902. NVD-2024-378903. OSV-DEBIAN-2024-378904. OSV-2024-378905. GHSA-3h5v-q93c-6h6q6. GCVE-2024-378907. SECURITY-TRACKER-CVE-2024-37890

References

1. https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q2. https://github.com/websockets/ws/issues/22303. https://github.com/websockets/ws/pull/22314. https://github.com/websockets/ws/commit/22c28763234aa75a7e1b76f5c01c181260d7917f5. https://github.com/websockets/ws/commit/4abd8f6de4b0b65ef80b3ff081989479ed93377e6. https://github.com/websockets/ws/commit/e55e5106f10fcbaac37cfa89759e4cc0d073a52c7. https://github.com/websockets/ws/commit/eeb76d313e2a00dd5247ca3597bba7877d064a63

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.