{"id":"CVE-2023-4785","details":"Lack of error handling in the TCP server in Google's gRPC starting version 1.23 on posix-compatible platforms (ex. Linux) allows an attacker to cause a denial of service by initiating a significant number of connections with the server. Note that gRPC C++ Python, and Ruby are affected, but gRPC Java, and Go are NOT affected.","aliases":["GHSA-p25m-jpj4-qcrr"],"modified":"2026-04-10T05:05:15.417083Z","published":"2023-09-13T17:15:10.227Z","related":["CGA-vr55-29vv-j265","SUSE-SU-2024:0573-1","openSUSE-SU-2024:13621-1","openSUSE-SU-2024:13634-1"],"references":[{"type":"REPORT","url":"https://github.com/grpc/grpc/pull/33667"},{"type":"REPORT","url":"https://github.com/grpc/grpc/pull/33669"},{"type":"REPORT","url":"https://github.com/grpc/grpc/pull/33670"},{"type":"REPORT","url":"https://github.com/grpc/grpc/pull/33672"},{"type":"FIX","url":"https://github.com/grpc/grpc/pull/33656"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/grpc/grpc","events":[{"introduced":"7c0764918b9f33cab507ff483b4be849b0203ec4"},{"fixed":"afb307fb89ed83f358d82b5d359034a039a95e66"},{"introduced":"6847e05dbb8088a918f06e2231a405942b5c002d"},{"fixed":"868412b573a0663c8db41558498caf44098f4390"},{"introduced":"0bf4a618b17a3f0ed61c22364913c7f66fc1c61a"},{"fixed":"49dcbce9aba5f5f0959871354df90e38f0c5ed00"},{"introduced":"0"},{"last_affected":"6e85620c7e258df79666a4743f862f2f82701c2d"}],"database_specific":{"versions":[{"introduced":"1.23.0"},{"fixed":"1.53.2"},{"introduced":"1.54.0"},{"fixed":"1.54.3"},{"introduced":"1.55.0"},{"fixed":"1.55.3"},{"introduced":"0"},{"last_affected":"1.56.0"}]}}],"versions":["release-0_6","release-0_6_0","release-0_9_0","release-0_9_1-objectivec-0.5.1","release_test","v1.3.4","v1.33.0","v1.41.0-pre1","v1.53.0","v1.53.0-pre1","v1.53.0-pre2","v1.53.1","v1.54.0","v1.54.1","v1.54.2","v1.55.0","v1.55.1","v1.56.0","v1.56.0-pre1","v1.56.0-pre2","v1.56.0-pre3"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-4785.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}