Lucene search

CVE-2022-23496

🗓️ 08 Dec 2022 22:10:15Reported by GitHub_MType

Yet Another UserAgent Analyzer (Yauaa) java library crashes with CVE-2022-2349

Reporter	Title	Published	Views	Family All 8
Cvelist	CVE-2022-23496 A crafted list can trigger a ArrayIndexOutOfBoundsException in Yauaa	8 Dec 202221:19	–	cvelist
RedhatCVE	CVE-2022-23496	5 Feb 202523:23	–	redhatcve
Github Security Blog	Yauaa vulnerable to ArrayIndexOutOfBoundsException triggered by a crafted Sec-Ch-Ua-Full-Version-List	8 Dec 202215:52	–	github
Veracode	Denial Of Service (DoS)	9 Dec 202203:36	–	veracode
OSV	Yauaa vulnerable to ArrayIndexOutOfBoundsException triggered by a crafted Sec-Ch-Ua-Full-Version-List	8 Dec 202215:52	–	osv
OSV	CVE-2022-23496	8 Dec 202222:15	–	osv
Prion	Design/Logic Flaw	8 Dec 202222:15	–	prion
NVD	CVE-2022-23496	8 Dec 202222:15	–	nvd

Nvd

Vulners

Node

yet_another_useragent_analyzer_project yet_another_useragent_analyzerRange7.0.0–7.9.0

[
  {
    "vendor": "nielsbasjes",
    "product": "yauaa",
    "versions": [
      {
        "version": ">= 7.0.0, < 7.9.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/nielsbasjes/yauaa/commit/3017a866e2cff0d308f264b66fde4fa79e3beb9e
github	www.github.com/nielsbasjes/yauaa/security/advisories/GHSA-c4pm-63cg-9j7h

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 Dec 2022 22:15Current

7.4High risk

Vulners AI Score7.4

CVSS37.5

EPSS0.00069

CWE-755