Lucene search
HistoryNov 29, 2023 - 8:15 p.m.
CVE-2023-48952
virtuoso-opensource
box_deserialize_reusing
denial of service
cve-2023-48952
select statement
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
17.0%
An issue in the box_deserialize_reusing function in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) after running a SELECT statement.
Affected configurations
Node
openlinkswvirtuosoMatch7.2.11open_source
| Vendor | Product | Version | CPE |
|---|---|---|---|
| openlinksw | virtuoso | 7.2.11 | cpe:2.3:a:openlinksw:virtuoso:7.2.11:*:*:*:open_source:*:*:* |
Related
debiancve
debiancve
CVE-2023-48952
2023-11-29 20:15:08
cvelist
cvelist
CVE-2023-48952
2023-11-29 00:00:00
ubuntucve
ubuntucve
CVE-2023-48952
2023-11-29 00:00:00
cve
cve
CVE-2023-48952
2023-11-29 20:15:08
prion
prion
Design/Logic Flaw
2023-11-29 20:15:00
redhatcve
redhatcve
CVE-2023-48952
2023-12-06 07:59:19
nessus
nessus
Amazon Linux 2 : virtuoso-opensource (ALAS-2024-2383)
2024-01-09 00:00:00
RHEL 7 : virtuoso-opensource (Unpatched Vulnerability)
2024-05-11 00:00:00
amazon
amazon
Important: virtuoso-opensource
2024-01-03 21:04:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
17.0%
Related for NVD:CVE-2023-48952