CVE-2024-57823

Опубликовано: 10 янв. 2025

Источник: nvd

CVSS3: 9.3

CVSS3: 5.5

EPSS Низкий

Описание

In Raptor RDF Syntax Library through 2.0.16, there is an integer underflow when normalizing a URI with the turtle parser in raptor_uri_normalize_path().

Ссылки

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1067896
Exploit
Mailing List
Third Party Advisory
https://github.com/dajobe/raptor/issues/70
Exploit
Issue Tracking
https://github.com/pedrib/PoC/blob/master/fuzzing/raptor-fuzz.md
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:librdf:raptor_rdf_syntax_library:*:*:*:*:*:*:*:*

Версия до 2.0.16 (включая)

EPSS

Процентиль: 21%

0.00066

Низкий

9.3 Critical

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-191

Связанные уязвимости

CVE-2024-57823

CVSS3: 9.3

ubuntu

10 месяцев назад

In Raptor RDF Syntax Library through 2.0.16, there is an integer underflow when normalizing a URI with the turtle parser in raptor_uri_normalize_path().

CVE-2024-57823

CVSS3: 7.3

redhat

10 месяцев назад

In Raptor RDF Syntax Library through 2.0.16, there is an integer underflow when normalizing a URI with the turtle parser in raptor_uri_normalize_path().

CVE-2024-57823

CVSS3: 9.3

debian

10 месяцев назад

In Raptor RDF Syntax Library through 2.0.16, there is an integer under ...

ROS-20250307-09

CVSS3: 9.3

redos

8 месяцев назад

Уязвимость raptor2

RLSA-2025:0314

rocky

10 месяцев назад

Important: raptor2 security update

EPSS

Процентиль: 21%

0.00066

Низкий

9.3 Critical

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-191