7 matches found
com.avast.cloud:datadog4s-http4s_2.12 (=0.14.0), com.avast.cloud:datadog4s_2.12 (=0.14.0) +90 more potentially affected by CVE-2023-22465 via org.http4s:http4s-core_2.12 (>=0.22.0 <=0.22-143-49b5a8d)
org.http4s:http4s-core2.12 MAVEN version =0.22.0, =0.18.8, =0.17.0, =0.17.0, =0.15.4, =0.17.0, =0.15.4, =0.17.0, =0.15.4, =0.15.4, =0.17.0, =0.17.0, =0.15.4, =0.15.4, =0.18.4 and more Source cves: CVE-2023-22465 Source advisory: OSV:GHSA-54W6-VXFH-FW7F...
ch.j3t:zio-prefetcher_2.13 (=0.8.0-RC6), com.47deg:energy-monitor-persistence-app_2.13 (=0.2.0) +202 more potentially affected by CVE-2023-22465 via org.http4s:http4s-core_2.13 (>=0.23.0 <=0.23.16)
org.http4s:http4s-core2.13 MAVEN version =0.23.0, =0.29.1, =0.31.0, =0.5.0, =0.9.4, =0.1-0b4f7b6, =0.1-e4b7179 - com.avast.cloud:datadog4s-http4s2.13 =0.31.0 - com.avast.cloud:datadog4s2.13 =0.31.0 - com.banno:vault4s2.13 =9.0.0 and more Source cves: CVE-2023-22465 Source advisory:...
ch.epfl.bluebrain.nexus:cli_2.13 (>=1.5.0 <=1.6.1), com.47deg:github4s_2.13 (>=0.22.0 <=0.28.5) +299 more potentially affected by CVE-2023-22465 via org.http4s:http4s-core_2.13 (>=0.21.0-M1 <=0.21.33)
org.http4s:http4s-core2.13 MAVEN version =0.21.0-M1, =1.5.0, =0.22.0, =0.2.0, =0.2.0, =0.1.0, =1.3.1, =1.3.1, =0.6.1, =0.13.1, =0.11.2, =0.12.1, =0.7.2, =0.13.1, =0.13.2 - com.avast.cloud:datadog4s3.0.0-M2 =0.11.1 and more Source cves: CVE-2023-22465 Source advisory: OSV:GHSA-54W6-VXFH-FW7F...
com.avast.clients.storage:storage-client-hcp_2.13 (>=2.0.0 <=2.2.0), com.avast.cloud:datadog4s-http4s_2.13 (=0.14.0) +95 more potentially affected by CVE-2023-22465 via org.http4s:http4s-core_2.13 (>=0.22.0 <=0.22-143-49b5a8d)
org.http4s:http4s-core2.13 MAVEN version =0.22.0, =2.0.0, =0.18.8, =0.17.0, =0.17.0, =0.15.4, =0.17.0, =0.15.4, =0.17.0, =0.15.4, =0.15.4, =0.17.0, =0.18.4 and more Source cves: CVE-2023-22465 Source advisory: OSV:GHSA-54W6-VXFH-FW7F...
CVE-2023-22465
creationtimestamp| type| source ---|---|--- 2023-01-04 18:18:17+00:00| seen| https://t.me/cibsecurity/55895 2025-03-10 21:39:15+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7063...
CVE-2023-22465 Http4s has fatal error parsing User-Agent and Server headers
Http4s is a Scala interface for HTTP services. Starting with version 0.1.0 and prior to versions 0.21.34, 0.22.15, 0.23.17, and 1.0.0-M38, the User-Agent and Server header parsers are susceptible to a fatal error on certain inputs. In http4s, modeled headers are lazily parsed, so this only applie...
CVE-2023-22465 Http4s has fatal error parsing User-Agent and Server headers
Http4s is a Scala interface for HTTP services. Starting with version 0.1.0 and prior to versions 0.21.34, 0.22.15, 0.23.17, and 1.0.0-M38, the User-Agent and Server header parsers are susceptible to a fatal error on certain inputs. In http4s, modeled headers are lazily parsed, so this only applie...