Lucene search
HistoryNov 29, 2023 - 8:15 p.m.
CVE-2023-48950
openlink
virtuoso-opensource
denial of service
select statement
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0005 Low
EPSS
Percentile
17.1%
An issue in the box_col_len function in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) after running a SELECT statement.
Affected configurations
Node
openlinkswvirtuosoMatch7.2.11open_source
Related
cve
cve
CVE-2023-48950
2023-11-29 20:15:08
redhatcve
redhatcve
CVE-2023-48950
2023-12-06 08:29:40
ubuntucve
ubuntucve
CVE-2023-48950
2023-11-29 00:00:00
debiancve
debiancve
CVE-2023-48950
2023-11-29 20:15:08
prion
prion
Information disclosure
2023-11-29 20:15:00
cvelist
cvelist
CVE-2023-48950
2023-11-29 00:00:00
redos
redos
ROS-20240402-15
2024-04-02 00:00:00
nessus
nessus
RHEL 7 : virtuoso-opensource (Unpatched Vulnerability)
2024-05-11 00:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0005 Low
EPSS
Percentile
17.1%
Related for NVD:CVE-2023-48950