Lucene search
+L

7 matches found

ibm
ibm
added 2024/06/04 9:22 a.m.23 views

Security Bulletin: Content Manager Enterprise Edition for March 2024 - CVE-2023-3894

Summary Content Manager Enterprise Edition is vulnerable to multiple remote code execution and denial of service attacks in third party and open source used in the product for various functions. See full list below. The vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2023-389...

7.5CVSS7.3AI score0.00741EPSS
Exploits0Affected Software1
susecve
susecve
added 2023/08/10 1:39 a.m.3 views

SUSE CVE-2023-3894

Those using jackson-dataformats-text to parse TOML data may be vulnerable to Denial of Service attacks DOS. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack...

5.8CVSS7.5AI score0.00741EPSS
Exploits0References3
vulnersosv
vulnersosv
added 2023/08/08 6:30 p.m.6 views

com.arassec.igor:igor-spring-boot-starter (>=0.6.7 <=0.6.8), com.arassec.igor:igor-standalone (>=0.6.7 <=0.6.8) +211 more potentially affected by CVE-2023-3894 via com.fasterxml.jackson.dataformat:jackson-dataformat-toml (>=2.12.3 <=2.14.2)

com.fasterxml.jackson.dataformat:jackson-dataformat-toml MAVEN version =2.12.3, =0.6.7, =0.6.7, =0.6.7, =0.0.1, =0.18.3, =0.18.3, =0.18.3, =0.18.3, =0.18.3, =0.18.3, =2023.2, =1.1.6, =3.0.0-snapshot.20240126.12648.0.va9dc2d63, =3.0.0-snapshot.20240126.12648.0.va9dc2d63,...

7.5CVSS7AI score0.00741EPSS
Exploits0
nvd
nvd
added 2023/08/08 6:15 p.m.24 views

CVE-2023-3894

Those using jackson-dataformats-text to parse TOML data may be vulnerable to Denial of Service attacks DOS. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack...

7.5CVSS6.3AI score0.00741EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2023/08/08 4:59 p.m.8 views

CVE-2023-3894 DOS in jackson-dataformats-text

Those using jackson-dataformats-text to parse TOML data may be vulnerable to Denial of Service attacks DOS. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack...

5.8CVSS6.6AI score0.00741EPSS
Exploits0References3
cve
cve
added 2023/08/08 4:59 p.m.66 views

CVE-2023-3894

CVE-2023-3894 affects FasterXML jackson-dataformats-text when parsing TOML, enabling potential DoS via stack overflow. IBM Cloud Pak System products list this CVE among vulnerabilities and recommend upgrading to Cloud Pak System 2.3.3.7 (Interim Fix 1) for general 2.3.x, or to Cloud Pak System 2....

7.5CVSS6.2AI score0.00741EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2023/08/08 4:59 p.m.29 views

CVE-2023-3894 DOS in jackson-dataformats-text

Those using jackson-dataformats-text to parse TOML data may be vulnerable to Denial of Service attacks DOS. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack...

5.8CVSS7.5AI score0.00741EPSS
Exploits0References3
Rows per page
Query Builder