Lucene search
K

7 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/02/17 4:32 a.m.6 views

Security Bulletin: IBM webMethods BPM is vulnerable to a denial of service due to snappy-java

Summary IBM webMethods BPM uses snappy-java which is automatically pulled in by kafka-clients as a compression codec dependency. The project doesn't directly use Snappy; it's used internally by Kafka for efficient message compression when streaming events through webmethods's event streaming...

7.5CVSS5.5AI score0.01762EPSS
Exploits3Affected Software1
Atlassian
Atlassian
added 2024/01/08 8:45 p.m.44 views

DoS (Denial of Service) org.xerial.snappy:snappy-java Dependency in Bitbucket Data Center and Server

This High severity org.xerial.snappy:snappy-java Dependency vulnerability was introduced in versions 7.21.0, 8.9.0 and 8.13.0 of Bitbucket Data Center and Server. This org.xerial.snappy:snappy-java Dependency vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of...

7.5CVSS6.9AI score0.01469EPSS
Exploits0
OSV
OSV
added 2023/07/08 11:5 a.m.6 views

OESA-2023-1398 snappy-java security update

A Java port of the snappy, a fast compresser/decompresser written in C++. Security Fixes: snappy-java is a fast compressor/decompressor for Java. Due to unchecked multiplications, an integer overflow may occur in versions prior to 1.1.10.1, causing an unrecoverable fatal error. The function...

7.5CVSS7.3AI score0.01762EPSS
Exploits1References3
Prion
Prion
added 2023/06/15 5:15 p.m.25 views

Integer overflow

snappy-java is a fast compressor/decompressor for Java. Due to unchecked multiplications, an integer overflow may occur in versions prior to 1.1.10.1, causing a fatal error. The function shuffleint input in the file BitShuffle.java receives an array of integers and applies a bit shuffle on it. It...

5CVSS7.5AI score0.01707EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2023/06/15 5:15 p.m.1 views

UBUNTU-CVE-2023-34454

snappy-java is a fast compressor/decompressor for Java. Due to unchecked multiplications, an integer overflow may occur in versions prior to 1.1.10.1, causing an unrecoverable fatal error. The function compresschar input in the file Snappy.java receives an array of characters and compresses it. I...

7.5CVSS6.8AI score0.01469EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2023/06/15 4:27 p.m.13 views

CVE-2023-34454 snappy-java's Integer Overflow vulnerability in compress leads to DoS

snappy-java is a fast compressor/decompressor for Java. Due to unchecked multiplications, an integer overflow may occur in versions prior to 1.1.10.1, causing an unrecoverable fatal error. The function compresschar input in the file Snappy.java receives an array of characters and compresses it. I...

5.9CVSS6.8AI score0.01469EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/06/15 4:12 p.m.31 views

CVE-2023-34453 snappy-java's Integer Overflow vulnerability in shuffle leads to DoS

snappy-java is a fast compressor/decompressor for Java. Due to unchecked multiplications, an integer overflow may occur in versions prior to 1.1.10.1, causing a fatal error. The function shuffleint input in the file BitShuffle.java receives an array of integers and applies a bit shuffle on it. It...

5.9CVSS7.9AI score0.01707EPSS
Exploits1References4
Rows per page
Query Builder