Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-28331HistoryJan 31, 2023 - 4:15 p.m.
CVE-2022-28331
2023-01-3116:15:08
Debian Security Bug Tracker
security-tracker.debian.org
13
windows
apache portable runtime
stack buffer overflow
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.077
Percentile
94.3%
On Windows, Apache Portable Runtime 1.7.0 and earlier may write beyond the end of a stack based buffer in apr_socket_sendv(). This is a result of integer overflow.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | apr | < 1.7.2-3 | apr_1.7.2-3_all.deb |
| Debian | 11 | all | apr | < 1.7.0-6+deb11u2 | apr_1.7.0-6+deb11u2_all.deb |
| Debian | 999 | all | apr | < 1.7.5-1 | apr_1.7.5-1_all.deb |
| Debian | 13 | all | apr | < 1.7.5-1 | apr_1.7.5-1_all.deb |
Related
veracode
veracode
Denial Of Service (DoS)
2023-02-12 03:36:16
nvd
nvd
CVE-2022-28331
2023-01-31 16:15:08
prion
prion
Integer overflow
2023-01-31 16:15:00
alpinelinux
alpinelinux
CVE-2022-28331
2023-01-31 16:15:08
cvelist
cvelist
osv
osv
BIT-apr-2022-28331
2024-03-06 10:50:33
CVE-2022-28331
2023-01-31 16:15:08
cve
cve
CVE-2022-28331
2023-01-31 16:15:08
ubuntucve
ubuntucve
CVE-2022-28331
2023-01-31 00:00:00
redhatcve
redhatcve
CVE-2022-28331
2023-02-22 14:29:27
ibm
ibm
redhat
redhat
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.077
Percentile
94.3%
Related for DEBIANCVE:CVE-2022-28331