CVE-2022-28131

Опубликовано: 16 авг. 2022

Источник: msrc

CVSS3: 7.5

EPSS Низкий

Описание

Stack exhaustion from deeply nested XML documents in encoding/xml

EPSS

Процентиль: 2%

0.00014

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2022-28131

CVSS3: 7.5

ubuntu

больше 3 лет назад

Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a deeply nested XML document.

CVE-2022-28131

CVSS3: 7.3

redhat

больше 3 лет назад

Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a deeply nested XML document.

CVE-2022-28131

CVSS3: 7.5

nvd

больше 3 лет назад

Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a deeply nested XML document.

CVE-2022-28131

CVSS3: 7.5

debian

больше 3 лет назад

Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17. ...

GHSA-3p2w-3263-9gr3

CVSS3: 7.5

github

больше 3 лет назад

Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a deeply nested XML document.

EPSS

Процентиль: 2%

0.00014

Низкий

7.5 High

CVSS3