Lucene search
ApacheCVELIST:CVE-2023-49619HistoryJan 10, 2024 - 8:25 a.m.
CVE-2023-49619 Apache Answer: Repeated submissions using scripts resulted in an abnormal number of collections for questions.
2024-01-1008:25:01
CWE-362
apache
www.cve.org
cve-2023-49619
apache answer
repeated submissions
abnormal collections
concurrent execution
shared resource
improper synchronization
race condition
vulnerability
upgrade
Concurrent Execution using Shared Resource with Improper Synchronization (‘Race Condition’) vulnerability in Apache Answer.
This issue affects Apache Answer: through 1.2.0.
Under normal circumstances, a user can only bookmark a question once, and will only increase the number of questions bookmarked once. However, repeat submissions through the script can increase the number of collection of the question many times.
Users are recommended to upgrade to version [1.2.1], which fixes the issue.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Apache Answer",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThanOrEqual": "1.2.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]Related
prion
prion
Race condition
2024-01-10 09:15:00
osv
osv
Apache Answer Race Condition vulnerability
2024-01-10 09:30:27
CVE-2023-49619
2024-01-10 09:15:44
cve
cve
CVE-2023-49619
2024-01-10 09:15:44
nvd
nvd
CVE-2023-49619
2024-01-10 09:15:44
veracode
veracode
Race Condition
2024-01-11 06:24:30
github
github
Apache Answer Race Condition vulnerability
2024-01-10 09:30:27