Lucene search
Ubuntu.comUB:CVE-2022-41852HistoryOct 06, 2022 - 12:00 a.m.
CVE-2022-41852
2022-10-0600:00:00
ubuntu.com
ubuntu.com
17
DISPUTED This record was originally reported by the oss-fuzz project
who failed to consider the security context in which JXPath is intended to
be used and failed to contact the JXPath maintainers prior to requesting
the CVE allocation. The CVE was then allocated by Google in breach of the
CNA rules. After review by the JXPath maintainers, the original report was
found to be invalid.
Notes
| Author | Note |
|---|---|
| rodrigo-zaiden | issue opened by fuzzer, may be related with CVEs CVE-2022-40157~40161. |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 20.04 | noarch | libcommons-jxpath-java | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | libcommons-jxpath-java | < any | UNKNOWN |
| ubuntu | upstream | noarch | libcommons-jxpath-java | < any | UNKNOWN |
| ubuntu | 14.04 | noarch | libcommons-jxpath-java | < any | UNKNOWN |
| ubuntu | upstream | noarch | libcommons-jxpath-java | < any | UNKNOWN |
Related
ubuntucve
ubuntucve
cve
cve
CVE-2022-41852
2022-10-06 18:17:00
CVE-2022-40157
2022-10-06 18:16:00
debiancve
debiancve
CVE-2022-40157
2022-10-06 18:16:00
CVE-2022-41852
2022-10-06 18:17:00
githubexploit
githubexploit
Exploit for CVE-2022-41852
2022-10-14 12:09:19
osv
osv
JXPath vulnerable to remote code execution when interpreting untrusted XPath expressions
2022-10-06 18:52:05
JXPath Out-of-bounds Write vulnerability
2022-10-06 18:52:04
cnvd
cnvd
Apache Commons JXPath Buffer Overflow Vulnerability (CNVD-2022-73688)
2022-10-12 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2022-10-12 10:01:17
github
github
redhatcve
redhatcve
CVE-2022-41852
2022-10-19 12:17:59
ibm
ibm
redhat
redhat
Related for UB:CVE-2022-41852