CVE-2024-58102

Опубликовано: 11 мар. 2025

Источник: nvd

CVSS3: 5.7

CVSS3: 6.5

EPSS Низкий

Описание

An issue was discovered in Datalust Seq before 2024.3.13545. An insecure default parsing depth limit allows stack consumption when parsing user-supplied queries containing deeply nested expressions.

Ссылки

https://datalust.co/seq
Product
https://github.com/datalust/seq-tickets/issues/2086
Issue Tracking
https://github.com/datalust/seq-tickets/issues/2367
Issue Tracking
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:datalust:seq:*:*:*:*:*:*:*:*

Версия до 2024.3.13545 (исключая)

EPSS

Процентиль: 23%

0.00073

Низкий

5.7 Medium

CVSS3

6.5 Medium

CVSS3

Дефекты

CWE-674

Связанные уязвимости

GHSA-xxqq-477x-j22x

CVSS3: 5.7

github

11 месяцев назад

An issue was discovered in Datalust Seq before 2024.3.13545. An insecure default parsing depth limit allows stack consumption when parsing user-supplied queries containing deeply nested expressions.

EPSS

Процентиль: 23%

0.00073

Низкий

5.7 Medium

CVSS3

6.5 Medium

CVSS3

Дефекты

CWE-674