Important: Red Hat Security Advisory: Migration Toolkit for Applications security and bug fix update

Migration Toolkit for Applications 6.2.0 release Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

ai.preferred:venom (>=4.0.1 <=4.2.7), at.ganzleicht.vaadin:vaadin-client-compiler (>=9.1.1 <=9.1.3) +2097 more potentially affected by CVE-2023-26119 via net.sourceforge.htmlunit:htmlunit (>=1.14 <=2.9)

net.sourceforge.htmlunit:htmlunit MAVEN version =1.14, =4.0.1, =9.1.1, =1.0.0, =1.0.0, =1.0.0, =0.0.2, =1, =2.0, =0.9.6, =0.9.6, =0.1.1, =0.5.0, =0.11.1, =0.30.0 and more Source cves: CVE-2023-26119 Source advisory: OSV:GHSA-3XRR-7M6P-P7XH...

GHSA-3XRR-7M6P-P7XH HtmlUnit Code Injection vulnerability

Versions of the package net.sourceforge.htmlunit:htmlunit from 0 and before 3.0.0 are vulnerable to Remote Code Execution RCE via XSTL, when browsing the attacker’s webpage...

HtmlUnit Code Injection vulnerability

Versions of the package net.sourceforge.htmlunit:htmlunit from 0 and before 3.0.0 are vulnerable to Remote Code Execution RCE via XSTL, when browsing the attacker’s webpage...

Security Bulletin: Vulnerability for remote code execution fixed in IBM Security Verify Governance [CVE-2023-26119]

Summary The following security vulnerability for HtmlUnit has been addressed in IBM Security Verify Governance. CVE-2023-26119 Vulnerability Details CVEID:CVE-2023-26119 DESCRIPTION: HtmlUnit could allow a remote attacker to execute arbitrary code on the system, caused by an XSTL code injection...

htmlUnit: Stack overflow crash causes Denial of Service (DoS)

A flaw was found in HtmlUnit. This issue may allow a malicious user to supply content to htmlUnit, which could cause a crash by stack overflow, leading to a Denial of Service DoS...

Denial Of Service (DoS)

net.sourceforge.htmlunit:htmlunit is vulnerable to Denial of Service DoS attacks. A malicious user is able to cause a stack based buffer overflow via the getNextElementUpwards function in DomNode.java when ran on user supplied input, which can cause the application to crash...

CVE-2023-2798

A flaw was found in HtmlUnit. This issue may allow a malicious user to supply content to htmlUnit, which could cause a crash by stack overflow, leading to a Denial of Service DoS...

Unrestricted recursion in htmlunit

Those using HtmlUnit to browse untrusted webpages may be vulnerable to Denial of service attacks DoS. If HtmlUnit is running on user supplied web pages, an attacker may supply content that causes HtmlUnit to crash by a stack overflow. This effect may support a denial of service attack. This issue...

GHSA-RC44-5CMH-879M Unrestricted recursion in htmlunit

Those using HtmlUnit to browse untrusted webpages may be vulnerable to Denial of service attacks DoS. If HtmlUnit is running on user supplied web pages, an attacker may supply content that causes HtmlUnit to crash by a stack overflow. This effect may support a denial of service attack. This issue...

CVE-2023-2798

Those using HtmlUnit to browse untrusted webpages may be vulnerable to Denial of service attacks DoS. If HtmlUnit is running on user supplied web pages, an attacker may supply content that causes HtmlUnit to crash by a stack overflow. This effect may support a denial of service attack.This issue...

CVE-2023-2798

Those using HtmlUnit to browse untrusted webpages may be vulnerable to Denial of service attacks DoS. If HtmlUnit is running on user supplied web pages, an attacker may supply content that causes HtmlUnit to crash by a stack overflow. This effect may support a denial of service attack.This issue...

Stack overflow

Those using HtmlUnit to browse untrusted webpages may be vulnerable to Denial of service attacks DoS. If HtmlUnit is running on user supplied web pages, an attacker may supply content that causes HtmlUnit to crash by a stack overflow. This effect may support a denial of service attack.This issue...

UBUNTU-CVE-2023-2798

Those using HtmlUnit to browse untrusted webpages may be vulnerable to Denial of service attacks DoS. If HtmlUnit is running on user supplied web pages, an attacker may supply content that causes HtmlUnit to crash by a stack overflow. This effect may support a denial of service attack.This issue...

CVE-2023-2798

Those using HtmlUnit to browse untrusted webpages may be vulnerable to Denial of service attacks DoS. If HtmlUnit is running on user supplied web pages, an attacker may supply content that causes HtmlUnit to crash by a stack overflow. This effect may support a denial of service attack.This issue...

CVE-2023-2798

HtmlUnit is affected by a DoS via a stack overflow when processing untrusted content, with impact unavailability. The issue affects HtmlUnit prior to version 2.70.0; upgrade to 2.70.0 or newer to mitigate. (Sources: CVE-2023-2798, GHSA-rc44-5CMH-879M)

CVE-2023-2798

Removed by vendor...

CVE-2023-2798 Denial of service in HtmlUnit

Those using HtmlUnit to browse untrusted webpages may be vulnerable to Denial of service attacks DoS. If HtmlUnit is running on user supplied web pages, an attacker may supply content that causes HtmlUnit to crash by a stack overflow. This effect may support a denial of service attack.This issue...

PT-2023-21466 · Htmlunit · Htmlunit

Name of the Vulnerable Software and Affected Versions: htmlunit versions prior to 2.70.0 Description: The issue allows an attacker to cause a denial of service attack by supplying content that causes htmlunit to crash due to a stack overflow when running on user-supplied web pages. This can happe...

HtmlUnit 缓冲区错误漏洞

HtmlUnit is an open source java page analysis tool , read the page , you can effectively use HtmlUnit to analyze the content on the page . A security vulnerability exists in HtmlUnit versions prior to 2.70.0, which stems from the possibility of a Denial of Service DoS attack when browsing untrust...