PT-2023-24695 · Apache · Apache Any23

Liran Mendelovich

·

Publicado

2023-07-05

·

Atualizado

2024-08-02

·

CVE-2023-34150

CVSS v3.1

6.5

Média

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
Name of the Vulnerable Software and Affected Versions Apache Any23 (affected versions not specified)
Description The use of TikaEncodingDetector in Apache Any23 can cause excessive memory usage.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Resource Exhaustion

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-400CWE-20

Identificadores relacionados

CVE-2023-34150
GHSA-2GPR-J5VJ-WVH2

Produtos afetados

Apache Any23