Lucene search
HistoryAug 25, 2012 - 10:29 a.m.
CVE-2012-3514
ocaml
xml-light
library
cve-2012-3514
nvd
security
denial of service
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.3 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.7%
OCaml Xml-Light Library before r234 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via unspecified vectors.
Affected configurations
Node
nicolas_cannasseocaml_xml-light_libraryRange≤r233
| CPE | Name | Operator | Version |
|---|---|---|---|
| nicolas_cannasse:ocaml_xml-light_library | nicolas cannasse ocaml xml-light library | le | r233 |
Related
openvas
openvas
Fedora Update for ocaml-xml-light FEDORA-2012-12500
2012-09-04 00:00:00
Fedora Update for ocaml-xml-light FEDORA-2012-12500
2012-09-04 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: ocaml-xml-light-2.3-0.1.svn234.fc17
2012-08-31 01:00:16
[SECURITY] Fedora 18 Update: ocaml-xml-light-2.3-0.1.svn234.fc18
2012-09-18 00:02:17
cvelist
cvelist
CVE-2012-3514
2012-08-25 10:00:00
nessus
nessus
RHEL 6 : ocaml-xml-light (Unpatched Vulnerability)
2024-06-03 00:00:00
Fedora 18 : ocaml-xml-light-2.3-0.1.svn234.fc18 (2012-12392)
2012-09-18 00:00:00
Fedora 17 : ocaml-xml-light-2.3-0.1.svn234.fc17 (2012-12500)
2012-08-31 00:00:00
ubuntucve
ubuntucve
CVE-2012-3514
2012-08-25 00:00:00
debiancve
debiancve
CVE-2012-3514
2012-08-25 10:29:52
prion
prion
Design/Logic Flaw
2012-08-25 10:29:00
nvd
nvd
CVE-2012-3514
2012-08-25 10:29:52
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.3 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.7%
Related for CVE-2012-3514