CVE-2017-1000118

HIGH

Akka HTTP <= 10.0.5 - Denial of Service via Illegal Media Range in Accept Header

Title source: llm
STIX 2.1

Description

Akka HTTP versions <= 10.0.5 Illegal Media Range in Accept Header Causes StackOverflowError Leading to Denial of Service

Scores

CVSS v3 7.5
EPSS 0.0110
EPSS Percentile 61.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-119
Status published
Products (3)
akka/http_server < 10.0.5
com.typesafe.akka/akka-http-core_2.11 0 - 10.0.6Maven
com.typesafe.akka/akka-http-core_2.12 0 - 10.0.6Maven
Published Oct 05, 2017
Tracked Since Feb 18, 2026