Количество 2
Количество 2
CVE-2022-43766
больше 3 лет назад
Apache IoTDB version 0.12.2 to 0.12.6, 0.13.0 to 0.13.2 are vulnerable to a Denial of Service attack when accepting untrusted patterns for REGEXP queries with Java 8. Users should upgrade to 0.13.3 which addresses this issue or use a later version of Java to avoid it.
CVSS3: 7.5
EPSS: Низкий
GHSA-g6hg-4v3c-6jq7
больше 3 лет назад
Apache IoTDB subject to ReDOS with Java 8
CVSS3: 7.5
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-43766 Apache IoTDB version 0.12.2 to 0.12.6, 0.13.0 to 0.13.2 are vulnerable to a Denial of Service attack when accepting untrusted patterns for REGEXP queries with Java 8. Users should upgrade to 0.13.3 which addresses this issue or use a later version of Java to avoid it. | CVSS3: 7.5 | 2% Низкий | больше 3 лет назад |
| GHSA-g6hg-4v3c-6jq7 Apache IoTDB subject to ReDOS with Java 8 | CVSS3: 7.5 | 2% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20