Lucene search
K

6 matches found

Veracode
Veracode
added 2022/10/27 5:13 a.m.48 views

Denial Of Service(DoS)

Apache IoTDB is vulnerable to denial of service. The vulnerability exists in multiple functions due to untrusted patterns for REGEXP queries which allows an attacker to crash the application via malicious input. This vulnerability is only applicable to Java 8...

7.5CVSS7.1AI score0.01341EPSS
Exploits0References5Affected Software3
PyPA
PyPA
added 2022/10/26 4:15 p.m.7 views

PYSEC-2022-42972

Apache IoTDB version 0.12.2 to 0.12.6, 0.13.0 to 0.13.2 are vulnerable to a Denial of Service attack when accepting untrusted patterns for REGEXP queries with Java 8. Users should upgrade to 0.13.3 which addresses this issue or use a later version of Java to avoid it...

7.5CVSS6.9AI score0.01341EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2022/10/26 4:15 p.m.21 views

Design/Logic Flaw

Apache IoTDB version 0.12.2 to 0.12.6, 0.13.0 to 0.13.2 are vulnerable to a Denial of Service attack when accepting untrusted patterns for REGEXP queries with Java 8. Users should upgrade to 0.13.3 which addresses this issue or use a later version of Java to avoid it...

5CVSS7.5AI score0.01341EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2022/10/26 4:15 p.m.25 views

PYSEC-2022-42972

Apache IoTDB version 0.12.2 to 0.12.6, 0.13.0 to 0.13.2 are vulnerable to a Denial of Service attack when accepting untrusted patterns for REGEXP queries with Java 8. Users should upgrade to 0.13.3 which addresses this issue or use a later version of Java to avoid it...

7.5CVSS4.6AI score0.01341EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/10/26 12:0 a.m.8 views

CVE-2022-43766 Apache IoTDB prior to 0.13.3 allows DoS

Apache IoTDB version 0.12.2 to 0.12.6, 0.13.0 to 0.13.2 are vulnerable to a Denial of Service attack when accepting untrusted patterns for REGEXP queries with Java 8. Users should upgrade to 0.13.3 which addresses this issue or use a later version of Java to avoid it...

7.5AI score0.01341EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/10/26 12:0 a.m.28 views

CVE-2022-43766 Apache IoTDB prior to 0.13.3 allows DoS

Apache IoTDB version 0.12.2 to 0.12.6, 0.13.0 to 0.13.2 are vulnerable to a Denial of Service attack when accepting untrusted patterns for REGEXP queries with Java 8. Users should upgrade to 0.13.3 which addresses this issue or use a later version of Java to avoid it...

7.7AI score0.01341EPSS
Exploits0References1
Rows per page
Query Builder