Lucene search
+L

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2023-33546

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs on...

5.5CVSS5.9AI score0.0033EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.15 views

openSUSE: Security Advisory for janino (SUSE-SU-2023:3385-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.0033EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/08/24 12:0 a.m.19 views

openSUSE 15 Security Update : janino (SUSE-SU-2023:3385-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2023:3385-1 advisory. janino was upgraded to version 3.1.10: - CVE-2023-33546: Fixed DoS due to missing error handling bsc1211923. Tenable has extracted the preceding description...

5.5CVSS6.2AI score0.0033EPSS
Exploits1References4
Amazon
Amazon
added 2023/07/26 12:0 a.m.8 views

Medium: janino

Issue Overview: janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs on user-supplied input, an attacker could supply content that causes the parser to crash due to a stack overflow. CVE-2023-3354...

5.5CVSS5.6AI score0.0033EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/06/02 2:29 a.m.4 views

SUSE CVE-2023-33546

Janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs on user-supplied input, an attacker could supply content that causes the parser to crash due to a stack overflow. NOTE: this is disputed by...

3.3CVSS7AI score0.0033EPSS
Exploits1References4
Circl
Circl
added 2023/06/01 4:30 p.m.6 views

CVE-2023-33546

creationtimestamp| type| source ---|---|--- 2023-06-01 16:30:15+00:00| seen| https://t.me/cibsecurity/64849...

5.5CVSS5.3AI score0.0033EPSS
Exploits1References1
NVD
NVD
added 2023/06/01 1:15 p.m.22 views

CVE-2023-33546

Janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs on user-supplied input, an attacker could supply content that causes the parser to crash due to a stack overflow. NOTE: this is disputed by...

5.5CVSS5.4AI score0.0033EPSS
Exploits1References2
OSV
OSV
added 2023/06/01 12:0 a.m.6 views

CVE-2023-33546

Janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs on user-supplied input, an attacker could supply content that causes the parser to crash due to a stack overflow. NOTE: this is disputed by...

5.5CVSS5.3AI score0.0033EPSS
Exploits1References4
Cvelist
Cvelist
added 2023/06/01 12:0 a.m.32 views

CVE-2023-33546

Janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs on user-supplied input, an attacker could supply content that causes the parser to crash due to a stack overflow. NOTE: this is disputed by...

5.6AI score0.0033EPSS
Exploits1References2
CVE
CVE
added 2023/06/01 12:0 a.m.87 views

CVE-2023-33546

CVE-2023-33546 affects Janino 3.1.9 and earlier, where the expression evaluator.guess parameter name method can trigger a denial-of-service via stack overflow if parsing user-supplied input. Documented impact is a DoS condition (parser crash) with local attack context; vendor/discussion notes tha...

5.5CVSS5.3AI score0.0033EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2023/06/01 12:0 a.m.36 views

CVE-2023-33546

Janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs on user-supplied input, an attacker could supply content that causes the parser to crash due to a stack overflow. NOTE: this is disputed by...

5.5CVSS5.5AI score0.0033EPSS
Exploits1
Rows per page
Query Builder