Lucene search
K

35 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/10/20 2:11 p.m.39 views

Security Bulletin: IBM App Connect Enterprise Toolkit and IBM Integration Bus Toolkit are vulnerable to a denial of service due to Okio GzipSource (CVE-2023-3635).

Summary IBM App Connect Enterprise Toolkit and IBM Integration Bus Toolkit using Maven projects feature are vulnerable to a denial of service due to Okio GzipSource. Vulnerability Details CVEID:CVE-2023-3635 DESCRIPTION: Okio GzipSource is vulnerable to a denial of service, caused by unhandled...

7.5CVSS6.4AI score0.01077EPSS
Exploits1Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2023/10/09 10:52 a.m.35 views

Security Bulletin: Vulnerability in Okio GzipSource affects IBM Process Mining . CVE-2023-3635

Summary There is a vulnerability in CVE-2023-3635 that could allow a remote attacker to execute a denial of service. The code is used by IBM Process Mining. This bulletin identifies the security fixes to apply to address the vulnerability. Vulnerability Details CVEID:CVE-2023-3635 DESCRIPTION: Ok...

7.5CVSS6.8AI score0.01077EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/09/27 9:9 p.m.13 views

Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in Okio GzipSource

Summary IBM Watson Discovery Cartridge for IBM Cloud Pak for Data contains a vulnerable version of Okio GzipSource. Vulnerability Details CVEID:CVE-2023-3635 DESCRIPTION: Okio GzipSource is vulnerable to a denial of service, caused by unhandled exception. By sending a specially crafted gzip buffe...

7.5CVSS6.4AI score0.01077EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/09/26 6:26 p.m.51 views

Security Bulletin: Okio GzipSource is vulnerable to CVE-2023-3635 used in IBM Maximo Application Suite - Monitor Component

Summary IBM Maximo Application Suite - Monitor Component uses Okio GzipSource which is vulnerable to CVE-2023-3635. Vulnerability Details CVEID:CVE-2023-3635 DESCRIPTION: Okio GzipSource is vulnerable to a denial of service, caused by unhandled exception. By sending a specially crafted gzip buffe...

7.5CVSS6.4AI score0.01077EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2023/09/14 9:51 a.m.2 views

okio: GzipSource class improper exception handling

A flaw was found in SquareUp Okio. A class GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer. This issue may allow a malicious user to start processing a malformed file, which can result in a Denial of Service DoS...

7.5CVSS6.7AI score0.01077EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2023/08/11 7:48 p.m.28 views

CVE-2023-3635

A flaw was found in SquareUp Okio. A class GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer. This issue may allow a malicious user to start processing a malformed file, which can result in a Denial of Service DoS...

7.5CVSS7.1AI score0.01077EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2023/07/12 9:30 p.m.106 views

Okio Signed to Unsigned Conversion Error vulnerability

GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer. This may lead to denial of service of the Okio client when handling a crafted GZIP archive, by using the GzipSource class...

7.5CVSS6.5AI score0.01077EPSS
Exploits1References8Affected Software2
NVD
NVD
added 2023/07/12 7:15 p.m.21 views

CVE-2023-3635

GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer. This may lead to denial of service of the Okio client when handling a crafted GZIP archive, by using the GzipSource class...

7.5CVSS0.01077EPSS
Exploits1References2
Prion
Prion
added 2023/07/12 7:15 p.m.22 views

Design/Logic Flaw

GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer. This may lead to denial of service of the Okio client when handling a crafted GZIP archive, by using the GzipSource class...

5CVSS7.1AI score0.01077EPSS
Exploits1References2Affected Software1
UbuntuCve
UbuntuCve
added 2023/07/12 7:15 p.m.31 views

CVE-2023-3635

GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer. This may lead to denial of service of the Okio client when handling a crafted GZIP archive, by using the GzipSource class...

7.5CVSS6.8AI score0.01077EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/07/12 6:34 p.m.29 views

CVE-2023-3635 Okio GzipSource unhandled exception Denial of Service

GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer. This may lead to denial of service of the Okio client when handling a crafted GZIP archive, by using the GzipSource class...

5.9CVSS7.5AI score0.01077EPSS
Exploits1References2
CVE
CVE
added 2023/07/12 6:34 p.m.567 views

CVE-2023-3635

CVE-2023-3635 : Okio GzipSource does not handle an exception when parsing a malformed gzip buffer, enabling potential denial of service against Okio-based clients processing crafted GZIP archives. Connected IBM bulletins confirm the vulnerability and reference Okio 2.x usage in IBM products (e.g....

7.5CVSS6.2AI score0.01077EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2023/07/12 6:34 p.m.173 views

CVE-2023-3635

GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer. This may lead to denial of service of the Okio client when handling a crafted GZIP archive, by using the GzipSource class...

7.5CVSS7.3AI score0.01077EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2023/07/12 6:34 p.m.15 views

CVE-2023-3635 Okio GzipSource unhandled exception Denial of Service

GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer. This may lead to denial of service of the Okio client when handling a crafted GZIP archive, by using the GzipSource class...

5.9CVSS6.5AI score0.01077EPSS
Exploits1References2
OSV
OSV
added 2023/07/12 6:34 p.m.26 views

CVE-2023-3635 Okio GzipSource unhandled exception Denial of Service

GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer. This may lead to denial of service of the Okio client when handling a crafted GZIP archive, by using the GzipSource class...

5.9CVSS6.7AI score0.01077EPSS
Exploits1References5
Rows per page
Query Builder