Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2022/06/21 9:1 a.m.51 views

CVE-2022-30973

We failed to apply the fix for CVE-2022-30126 to the 1.x branch in the 1.28.2 release. In Apache Tika, a regular expression in the StandardsText class, used by the StandardsExtractingContentHandler could lead to a denial of service caused by backtracking on a specially crafted file. This only...

5.5CVSS4.3AI score0.02495EPSS
Exploits0References3
OSV
OSV
added 2022/05/31 2:15 p.m.33 views

CVE-2022-30973

We failed to apply the fix for CVE-2022-30126 to the 1.x branch in the 1.28.2 release. In Apache Tika, a regular expression in the StandardsText class, used by the StandardsExtractingContentHandler could lead to a denial of service caused by backtracking on a specially crafted file. This only...

5.5CVSS5.2AI score
Exploits0References4
CVE
CVE
added 2022/05/31 1:20 p.m.164 views

CVE-2022-30973

Apache Tika's ReDoS vulnerability (CVE-2022-30973) arises from a regex in StandardsText used by StandardsExtractingContentHandler. Affected: 1.x branch, specifically the 1.28.2 release; impact is denial of service via backtracking on crafted files. The issue is limited to users running the Standa...

5.5CVSS4.6AI score0.02495EPSS
Exploits0References4Affected Software1
Symfony
Symfony
added 2019/03/12 12:0 a.m.25 views

Twig: Sandbox Information Disclosure

Affected versions Twig 1.0.0 to 1.37.1 and 2.0.0 to 2.6.2 are affected by this security issue. The issue has been fixed in Twig 1.38.0 and 2.7.0. Description This vulnerability affects the sandbox mode of Twig. If you are not using the sandbox, your code is not affected. Twig allows the evaluatio...

6.8AI score
Exploits0
Rows per page
Query Builder