CVE Tools

swift project

OSS Librariesoss-project

3

Cumulative CVEs

1

Monthly snapshots

#178

Peak rank

Top products

swiftnio http23

Latest CVEs

The 10 most recently published vulnerabilities affecting swift project.

CVE-2025-0343Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects can only be provide...7.5Jan 15, 2025
CVE-2022-3918A program using FoundationNetworking in swift-corelibs-foundation is potentially vulnerable to CRLF ( ) injection in URLRequest headers. In this vulnerability, a client can insert one or several CR...8.8Jan 20, 2023
CVE-2023-0040Versions of Async HTTP Client prior to 1.13.2 are vulnerable to a form of targeted request manipulation called CRLF injection. This vulnerability was the result of insufficient validation of HTTP h...7.5Jan 18, 2023
CVE-2022-3215NIOHTTP1 and projects using it for generating HTTP responses can be subject to a HTTP Response Injection attack. This occurs when a HTTP/1.1 server accepts user generated input from an incoming req...7.5Sep 28, 2022
CVE-2022-3252Improper detection of complete HTTP body decompression SwiftNIO Extras provides a pair of helpers for transparently decompressing received HTTP request or response bodies. These two objects (HTTPRe...7.5Sep 21, 2022
CVE-2022-1642A program using swift-corelibs-foundation is vulnerable to a denial of service attack caused by a potentially malicious source producing a JSON document containing a type mismatch. This vulnerabili...7.5Jun 16, 2022
CVE-2022-0618A program using swift-nio-http2 is vulnerable to a denial of service attack, caused by a network peer sending a specially crafted HTTP/2 frame. This vulnerability is caused by a logical error when ...7.5Mar 9, 2022
CVE-2022-24668A program using swift-nio-http2 is vulnerable to a denial of service attack caused by a network peer sending ALTSVC or ORIGIN frames. This attack affects all swift-nio-http2 versions from 1.0.0 to ...7.5Feb 9, 2022
CVE-2022-24667A program using swift-nio-http2 is vulnerable to a denial of service attack, caused by a network peer sending a specially crafted HPACK-encoded header block. This attack affects all swift-nio-http2...7.5Feb 9, 2022
CVE-2022-24666A program using swift-nio-http2 is vulnerable to a denial of service attack, caused by a network peer sending a specially crafted HTTP/2 frame. This attack affects all swift-nio-http2 versions from...7.5Feb 9, 2022