Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistApacheCVELIST:CVE-2022-24294
HistoryJul 24, 2022 - 5:45 p.m.

CVE-2022-24294 ReDoS in Apache MXNet RTC Module

2022-07-2417:45:12
CWE-400
apache
www.cve.org
4
apache mxnet
denial-of-service
regular expression

EPSS

0.001

Percentile

38.4%

JSON

A regular expression used in Apache MXNet (incubating) is vulnerable to a potential denial-of-service by excessive resource consumption. The bug could be exploited when loading a model in Apache MXNet that has a specially crafted operator name that would cause the regular expression evaluation to use excessive resources to attempt a match. This issue affects Apache MXNet versions prior to 1.9.1.

CNA Affected

[
  {
    "product": "Apache MXNet",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "lessThan": "1.9.1",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Related

prion 1
nvd 1
veracode 1
osv 3
cve 1
github 1
prion
prion
Denial of service
2022-07-24 18:15:00
nvd
nvd
CVE-2022-24294
2022-07-24 18:15:09
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2022-07-25 07:55:55
osv
osv
CVE-2022-24294
2022-07-24 18:15:09
BIT-mxnet-2022-24294
2023-11-06 08:56:03
Apache MXNet vulnerable to potential denial-of-service by excessive resource consumption
2022-07-25 00:00:31
cve
cve
CVE-2022-24294
2022-07-24 18:15:09
github
github
Apache MXNet vulnerable to potential denial-of-service by excessive resource consumption
2022-07-25 00:00:31

EPSS

0.001

Percentile

38.4%

JSON
Related for CVELIST:CVE-2022-24294
prion1nvd1veracode1osv3cve1github1