Lucene search
Veracode Vulnerability DatabaseVERACODE:34537HistoryMar 07, 2022 - 2:49 a.m.
Denial Of Service (DoS)
2022-03-0702:49:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.0005 Low
EPSS
Percentile
18.4%
poi-scratchpad is vulnerable to denial of service. An attacker can cause an application crash through the out of memory exception by submitting the malicious TNEF file to the TNEFAttribute parameter in the create function of MAPIAttribute.java
| CPE | Name | Operator | Version |
|---|---|---|---|
| apache poi | eq | 3.9 | |
| apache poi | le | 5.2.0 | |
| apache poi | le | 3.16 | |
| apache poi | le | 3.15 | |
| apache poi | le | 3.13 | |
| apache poi | le | 3.17 | |
| apache poi | le | 4.1.2 | |
| apache poi | le | 3.10.1 | |
| apache poi | le | 3.11 | |
| apache poi | le | 3.14 |
Related
ubuntucve
ubuntucve
CVE-2022-26336
2022-03-04 00:00:00
osv
osv
Improper Input Validation and Allocation of Resources Without Limits or Throttling in poi-scratchpad
2022-03-05 00:00:44
CVE-2022-26336
2022-03-04 16:15:10
ibm
ibm
nvd
nvd
CVE-2022-26336
2022-03-04 16:15:10
github
github
redhatcve
redhatcve
CVE-2022-26336
2022-03-11 18:14:31
cvelist
cvelist
prion
prion
Code injection
2022-03-04 16:15:00
cve
cve
CVE-2022-26336
2022-03-04 16:15:10
adobe
adobe
APSB23-31 : Security update available for Adobe Experience Manager
2023-06-13 00:00:00
redhat
redhat
(RHSA-2022:5532) Important: Red Hat Fuse 7.11.0 release and security update
2022-07-07 14:16:35
oracle
oracle
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00
Oracle Critical Patch Update Advisory - April 2023
2023-04-18 00:00:00