Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:46750
HistoryMay 06, 2024 - 6:24 a.m.

Integer Overflow

2024-05-0606:24:49
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
uriparser
vulnerability
integer overflow
input validation
denial of service
crafted strings

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.3%

uriparser is vulnerable to an Integer overflow. The vulnerability is due to insufficient input validation in ComposeQueryMallocExMm within UriQuery.c , which allows attackers to cause a Denial of service via long crafted strings.

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.3%