GHSA-grr4-wv38-f68w

Опубликовано: 13 дек. 2022

Источник: github

Github: Прошло ревью

CVSS3: 7.5

Описание

Jettison Out-of-bounds Write vulnerability

Jettison before v1.5.2 was discovered to contain a stack overflow via the map parameter. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

Ссылки

Пакеты

Наименование

org.codehaus.jettison:jettison

maven

Затронутые версииВерсия исправления

< 1.5.2

1.5.2

EPSS

Процентиль: 33%

0.00131

Низкий

7.5 High

CVSS3

CVE ID

CVE-2022-45693

Дефекты

CWE-787

Связанные уязвимости

CVE-2022-45693

CVSS3: 7.5

ubuntu

около 3 лет назад

Jettison before v1.5.2 was discovered to contain a stack overflow via the map parameter. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

CVE-2022-45693

CVSS3: 7.5

redhat

около 3 лет назад

Jettison before v1.5.2 was discovered to contain a stack overflow via the map parameter. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

CVE-2022-45693

CVSS3: 7.5

nvd

около 3 лет назад

Jettison before v1.5.2 was discovered to contain a stack overflow via the map parameter. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

CVE-2022-45693

CVSS3: 7.5

debian

около 3 лет назад

Jettison before v1.5.2 was discovered to contain a stack overflow via ...

EPSS

Процентиль: 33%

0.00131

Низкий

7.5 High

CVSS3

CVE ID

CVE-2022-45693

Дефекты

CWE-787