Lucene search
ApacheCVELIST:CVE-2022-33879HistoryJun 27, 2022 - 9:40 p.m.
CVE-2022-33879 Incomplete fix and new regex DoS in StandardsExtractingContentHandler
2022-06-2721:40:10
apache
www.cve.org
1
The initial fixes in CVE-2022-30126 and CVE-2022-30973 for regexes in the StandardsExtractingContentHandler were insufficient, and we found a separate, new regex DoS in a different regex in the StandardsExtractingContentHandler. These are now fixed in 1.28.4 and 2.4.1.
CNA Affected
[
{
"product": "Apache Tika",
"vendor": "Apache Software Foundation",
"versions": [
{
"changes": [
{
"at": "1.28.4",
"status": "unaffected"
}
],
"lessThan": "2.4.1",
"status": "affected",
"version": "Apache Tika",
"versionType": "custom"
}
]
}
]Related
ubuntucve
ubuntucve
osv
osv
CVE-2022-33879
2022-06-27 22:15:09
Apache Tika contains incomplete fix for regex DoS
2022-06-28 00:00:41
CVE-2022-30973
2022-05-31 14:15:07
cve
cve
prion
prion
Design/Logic Flaw
2022-06-27 22:15:00
Design/Logic Flaw
2022-05-31 14:15:00
Code injection
2022-05-16 17:15:00
nvd
nvd
ibm
ibm
Security Bulletin: IBM Operations Analytics - Log Analysis vulnerable to multiple vulnerabilities in Apache Tika (CVE-2022-30126, CVE-2022-33879, CVE-2022-30973)
2022-11-17 16:06:37
github
github
Apache Tika contains incomplete fix for regex DoS
2022-06-28 00:00:41
Regular expression denial of service in apache tika
2022-06-01 00:00:36
Regular expression denial of service in apache tika
2022-05-17 00:00:37
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2022-06-28 08:35:27
Regular Expression Denial Of Service (ReDoS)
2022-06-01 10:24:13
Denial Of Service (DoS)
2022-05-17 07:13:07
openvas
openvas
Apache Tika Server < 1.28.4, 2.4.x < 2.4.1 DoS Vulnerability
2022-06-29 00:00:00
Apache Tika Server < 1.28.3 DoS Vulnerability
2022-06-01 00:00:00
Apache Tika Server < 1.28.2, 2.x < 2.4.0 Multiple Vulnerabilities
2022-05-17 00:00:00
debiancve
debiancve
cvelist
cvelist
CVE-2022-30973 Missing fix for CVE-2022-30126 in 1.28.2
2022-05-31 13:20:10
redhatcve
redhatcve
CVE-2022-30973
2022-06-21 09:01:21
CVE-2022-30126
2022-06-06 22:57:18
redhat
redhat
(RHSA-2022:7257) Low: Red Hat Integration Camel-K 1.8.1 security update
2022-10-27 18:11:20
(RHSA-2022:5532) Important: Red Hat Fuse 7.11.0 release and security update
2022-07-07 14:16:35
cnvd
cnvd
Apache Tika Denial of Service Vulnerability (CNVD-2022-73491)
2022-05-27 00:00:00
Apache Tika Denial of Service Vulnerability (CNVD-2022-73263)
2022-06-01 00:00:00
nessus
nessus
Oracle Primavera Unifier (Jul 2022 CPU)
2022-07-20 00:00:00
Oracle Primavera Unifier (Oct 2022 CPU)
2022-10-20 00:00:00
Oracle WebCenter Portal Multiple Vulnerabilities (Oct 2022 CPU)
2022-10-20 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2022
2022-10-18 00:00:00
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00