exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2022-40152

больше 3 лет назад

Those using Woodstox to parse XML data may be vulnerable to Denial of Service attacks (DOS) if DTD support is enabled. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.

CVSS3: 6.5

EPSS: Низкий

CVE-2022-40152

больше 3 лет назад

Those using Woodstox to parse XML data may be vulnerable to Denial of Service attacks (DOS) if DTD support is enabled. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.

CVSS3: 7.5

EPSS: Низкий

CVE-2022-40152

больше 3 лет назад

Those using Woodstox to parse XML data may be vulnerable to Denial of Service attacks (DOS) if DTD support is enabled. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.

CVSS3: 6.5

EPSS: Низкий

CVE-2022-40152

больше 3 лет назад

Those using Woodstox to parse XML data may be vulnerable to Denial of ...

CVSS3: 6.5

EPSS: Низкий

GHSA-3f7h-mf4q-vrm4

больше 3 лет назад

Denial of Service due to parser crash

CVSS3: 6.5

EPSS: Низкий

BDU:2023-08465

больше 3 лет назад

Уязвимость библиотеки woodstox, связанная с переполнением буфера в стеке, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 6.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2022-40152 Those using Woodstox to parse XML data may be vulnerable to Denial of Service attacks (DOS) if DTD support is enabled. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.	CVSS3: 6.5	1% Низкий	больше 3 лет назад
CVE-2022-40152 Those using Woodstox to parse XML data may be vulnerable to Denial of Service attacks (DOS) if DTD support is enabled. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.	CVSS3: 7.5	1% Низкий	больше 3 лет назад
CVE-2022-40152 Those using Woodstox to parse XML data may be vulnerable to Denial of Service attacks (DOS) if DTD support is enabled. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.	CVSS3: 6.5	1% Низкий	больше 3 лет назад
CVE-2022-40152 Those using Woodstox to parse XML data may be vulnerable to Denial of ...	CVSS3: 6.5	1% Низкий	больше 3 лет назад
GHSA-3f7h-mf4q-vrm4 Denial of Service due to parser crash	CVSS3: 6.5	1% Низкий	больше 3 лет назад
BDU:2023-08465 Уязвимость библиотеки woodstox, связанная с переполнением буфера в стеке, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 6.5	1% Низкий	больше 3 лет назад

Уязвимостей на страницу