4 matches found
CVE-2022-25867
creationtimestamp| type| source ---|---|--- 2022-08-02 18:17:45+00:00| seen| https://t.me/cibsecurity/47406...
CVE-2022-25867
CVE-2022-25867 affects io.socket:socket.io-client (Java) pre-2.0.1. A NULL pointer dereference when parsing a packet with an invalid payload format can lead to denial of service. NVD lists a base score of 7.5 HIGH (NETWORK, low complexity, no user interaction). Public details confirm the issue in...
CVE-2022-25867 NULL Pointer Dereference
The package io.socket:socket.io-client before 2.0.1 are vulnerable to NULL Pointer Dereference when parsing a packet with with invalid payload format...
io.github.comet-crypto:lib (>=0.2 <=0.2.3), io.socket:socket.io-server (>=3.0.0 <=3.0.1) potentially affected by CVE-2022-25867 via io.socket:socket.io-client (=2.0.0)
io.socket:socket.io-client MAVEN version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on io.socket:socket.io-client and may be impacted: - io.github.comet-crypto:lib =0.2, =3.0.0, =3.0.1 Source cves: CVE-2022-25867 Source advisory:...