Lucene search
Ubuntu.comUB:CVE-2022-40157HistoryOct 06, 2022 - 12:00 a.m.
CVE-2022-40157
2022-10-0600:00:00
ubuntu.com
ubuntu.com
16
DISPUTED This record was originally reported by the oss-fuzz project
who failed to consider the security context in which JXPath is intended to
be used and failed to contact the JXPath maintainers prior to requesting
the CVE allocation. The CVE was then allocated by Google in breach of the
CNA rules. After review by the JXPath maintainers, the original report was
found to be invalid.
Notes
| Author | Note |
|---|---|
| rodrigo-zaiden | issue opened by fuzzer, may be related with CVEs CVE-2022-40157~40161 and CVE-2022-41852. |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 20.04 | noarch | libcommons-jxpath-java | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | libcommons-jxpath-java | < any | UNKNOWN |
| ubuntu | upstream | noarch | libcommons-jxpath-java | < any | UNKNOWN |
| ubuntu | 14.04 | noarch | libcommons-jxpath-java | < any | UNKNOWN |
| ubuntu | upstream | noarch | libcommons-jxpath-java | < any | UNKNOWN |
Related
ubuntucve
ubuntucve
cve
cve
CVE-2022-41852
2022-10-06 18:17:00
CVE-2022-40157
2022-10-06 18:16:00
debiancve
debiancve
CVE-2022-40157
2022-10-06 18:16:00
CVE-2022-41852
2022-10-06 18:17:00
cnvd
cnvd
Apache Commons JXPath Buffer Overflow Vulnerability (CNVD-2022-73688)
2022-10-12 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2022-10-12 10:01:17
osv
osv
JXPath Out-of-bounds Write vulnerability
2022-10-06 18:52:04
github
github
githubexploit
githubexploit
Exploit for CVE-2022-41852
2022-10-14 12:09:19
redhatcve
redhatcve
CVE-2022-41852
2022-10-19 12:17:59
ibm
ibm
redhat
redhat
Related for UB:CVE-2022-40157