Lucene search

CVE-2022-24963 Apache Portable Runtime (APR): out-of-bound writes in the apr_encode family of functions

🗓️ 31 Jan 2023 15:09:52Reported by apacheType

Integer Overflow or Wraparound vulnerability in Apache Portable Runtime (APR) allows out-of-bound writes in apr_encode family of function

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 84
OSV	RLSA-2023:7711 Moderate: apr security update	10 May 202414:33	–	osv
OSV	apr - security update	7 Mar 202300:00	–	osv
OSV	OPENSUSE-SU-2024:12655-1 apr-devel-1.7.2-1.1 on GA media	15 Jun 202400:00	–	osv
OSV	BIT-apr-2022-24963	6 Mar 202410:50	–	osv
OSV	RHSA-2023:7711 Red Hat Security Advisory: apr security update	13 Sep 202423:28	–	osv
OSV	CVE-2022-24963	31 Jan 202316:15	–	osv
OSV	Moderate: apr security update	11 Dec 202300:00	–	osv
OSV	apr vulnerability	27 Feb 202300:45	–	osv
OSV	RHSA-2023:4909 Red Hat Security Advisory: Red Hat JBoss Web Server 5.7.4 release and security update	20 Sep 202414:30	–	osv
OSV	RHSA-2023:4629 Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.57 security update	13 Sep 202423:26	–	osv

[
  {
    "defaultStatus": "unaffected",
    "product": "Apache Portable Runtime (APR)",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "status": "affected",
        "version": "1.7.0"
      }
    ]
  }
]

Source	Link
lists	www.lists.apache.org/thread/fw9p6sdncwsjkstwc066vz57xqzfksq9
security	www.security.netapp.com/advisory/ntap-20230908-0008/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

31 Jan 2023 15:52Current

9.6High risk

Vulners AI Score9.6

EPSS0.00129

CWE-190