Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:32922
HistoryNov 12, 2021 - 12:40 a.m.

Denial Of Service (DoS)

2021-11-1200:40:34
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
19
jbcs-httpd24
denial of service
buffer over-read
jit
utf disabled

EPSS

0.01

Percentile

83.9%

jbcs-httpd24 is vulnerable to denial of service (DoS) attacks. An attacker is able to perform a buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, resulting in a system hang.