Lucene search
HistoryJan 31, 2023 - 4:15 p.m.
CVE-2022-28331
windows
apache portable runtime
buffer overflow
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.6
Confidence
High
EPSS
0.077
Percentile
94.3%
On Windows, Apache Portable Runtime 1.7.0 and earlier may write beyond the end of a stack based buffer in apr_socket_sendv(). This is a result of integer overflow.
Affected configurations
Node
apacheportable_runtimeRange≤1.7.0
microsoftwindowsMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| apache | portable_runtime | * | cpe:2.3:a:apache:portable_runtime:*:*:*:*:*:*:*:* |
| microsoft | windows | - | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
Related
veracode
veracode
Denial Of Service (DoS)
2023-02-12 03:36:16
debiancve
debiancve
CVE-2022-28331
2023-01-31 16:15:08
prion
prion
Integer overflow
2023-01-31 16:15:00
alpinelinux
alpinelinux
CVE-2022-28331
2023-01-31 16:15:08
cvelist
cvelist
osv
osv
BIT-apr-2022-28331
2024-03-06 10:50:33
CVE-2022-28331
2023-01-31 16:15:08
cve
cve
CVE-2022-28331
2023-01-31 16:15:08
ubuntucve
ubuntucve
CVE-2022-28331
2023-01-31 00:00:00
redhatcve
redhatcve
CVE-2022-28331
2023-02-22 14:29:27
ibm
ibm
redhat
redhat
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.6
Confidence
High
EPSS
0.077
Percentile
94.3%
Related for NVD:CVE-2022-28331