Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2023-3635
HistoryJul 12, 2023 - 7:15 p.m.

CVE-2023-3635

2023-07-1219:15:08
Google
osv.dev
8
gzipsource
exception handling
vulnerability
okio client

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.3%

JSON

GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer. This may lead to denial of service of the Okio client when handling a crafted GZIP archive, by using the GzipSource class.

Related

ibm 25
cve 1
github 1
redhatcve 1
debiancve 1
cvelist 1
atlassian 2
cgr 1
prion 1
nessus 1
osv 1
ubuntucve 1
veracode 1
wolfi 1
redhat 4
oracle 3
ibm
ibm
Security Bulletin: Vulnerability in Okio GzipSource affects IBM Process Mining . CVE-2023-3635
2023-10-09 10:52:48
Security Bulletin: IBM Maximo Application Suite uses okio-jvm-3.0.0.jar which is vulnerable to CVE-2023-3635
2023-12-15 05:30:05
Security Bulletin: IBM App Connect Enterprise Toolkit and IBM Integration Bus Toolkit are vulnerable to a denial of service due to Okio GzipSource (CVE-2023-3635).
2023-10-20 14:11:06
cve
cve
CVE-2023-3635
2023-07-12 19:15:08
github
github
Okio Signed to Unsigned Conversion Error vulnerability
2023-07-12 21:30:50
redhatcve
redhatcve
CVE-2023-3635
2023-08-11 19:48:49
debiancve
debiancve
CVE-2023-3635
2023-07-12 19:15:08
cvelist
cvelist
CVE-2023-3635 Okio GzipSource unhandled exception Denial of Service
2023-07-12 18:34:31
atlassian
atlassian
DoS (Denial of Service) com.squareup.okio:okio-jvm Dependency in Confluence Data Center and Server
2023-12-10 07:45:12
DoS (Denial of Service) okio in Bitbucket Data Center and Server
2023-12-05 04:45:09
cgr
cgr
CVE-2023-3635 vulnerabilities
2024-05-19 03:07:16
prion
prion
Design/Logic Flaw
2023-07-12 19:15:00
nessus
nessus
Atlassian Confluence 7.13 < 7.19.17 / 8.0.x < 8.4.5 / 8.5.x < 8.5.4 / 8.6.x < 8.6.2 DoS (CONFSERVER-93623)
2024-01-16 00:00:00
osv
osv
Okio Signed to Unsigned Conversion Error vulnerability
2023-07-12 21:30:50
ubuntucve
ubuntucve
CVE-2023-3635
2023-07-12 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-07-14 02:23:17
wolfi
wolfi
CVE-2023-3635 vulnerabilities
2024-06-01 21:07:39
redhat
redhat
(RHSA-2024:3385) Moderate: Red Hat JBoss EAP 7.4.14 XP 4.0.2.GA security release
2024-05-28 11:17:57
(RHSA-2024:1353) Important: Red Hat Process Automation Manager 7.13.5 security update
2024-03-18 09:45:58
(RHSA-2023:7247) Critical: Red Hat Fuse 7.12.1 release and security update
2023-11-15 17:06:12
oracle
oracle
Oracle Critical Patch Update Advisory - October 2023
2023-10-17 00:00:00
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.3%

JSON
Related for OSV:CVE-2023-3635
ibm25cve1github1redhatcve1debiancve1cvelist1atlassian2cgr1prion1nessus1osv1ubuntucve1veracode1wolfi1redhat4oracle3