Lucene search
HistoryOct 11, 2022 - 11:15 p.m.
CVE-2022-41404
fetch method
basicprofile class
org.ini4j
v0.5.4
dos
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
34.4%
An issue in the fetch() method in the BasicProfile class of org.ini4j before v0.5.4 allows attackers to cause a Denial of Service (DoS) via unspecified vectors.
Affected configurations
Node
ini4j_projectini4jRange<0.5.4
Node
debiandebian_linuxMatch10.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ini4j_project | ini4j | * | cpe:2.3:a:ini4j_project:ini4j:*:*:*:*:*:*:*:* |
| debian | debian_linux | 10.0 | cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* |
Related
nessus
nessus
Debian DLA-3209-1 : ini4j - LTS security update
2022-12-05 00:00:00
debiancve
debiancve
CVE-2022-41404
2022-10-11 23:15:10
cvelist
cvelist
CVE-2022-41404
2022-10-11 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-10-13 13:57:58
prion
prion
Design/Logic Flaw
2022-10-11 23:15:00
openvas
openvas
Debian: Security Advisory (DLA-3209-1)
2022-11-29 00:00:00
osv
osv
org.ini4j allows attackers to cause a Denial of Service (DoS)
2022-10-12 12:00:20
ini4j - security update
2022-11-28 00:00:00
ini4j-0.5.4-1.1 on GA media
2024-06-15 00:00:00
debian
debian
[SECURITY] [DLA 3209-1] ini4j security update
2022-11-28 10:30:32
ubuntucve
ubuntucve
CVE-2022-41404
2022-10-11 00:00:00
redhatcve
redhatcve
CVE-2022-41404
2024-03-16 21:09:29
ibm
ibm
github
github
org.ini4j allows attackers to cause a Denial of Service (DoS)
2022-10-12 12:00:20
cve
cve
CVE-2022-41404
2022-10-11 23:15:10
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
34.4%
Related for NVD:CVE-2022-41404