Lucene search
GitHub Advisory DatabaseGHSA-HFG7-J82C-FR3WHistoryMay 24, 2024 - 8:09 p.m.
Soot Infinite Loop vulnerability
2024-05-2420:09:40
CWE-400
CWE-835
GitHub Advisory Database
github.com
6
soot
infinite loop
denial of service
java 8
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
AI Score
6.7
Confidence
High
An infinite loop in the retrieveActiveBody function of Soot before v4.4.1 under Java 8 allows attackers to cause a Denial of Service (DoS).
Affected configurations
Node
org.soot-osssootRange<4.4.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| org.soot-oss | soot | * | cpe:2.3:a:org.soot-oss:soot:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2023-46442
1976-01-01 00:00:00
osv
osv
Soot Infinite Loop vulnerability
2024-05-24 20:09:40
nvd
nvd
CVE-2023-46442
2024-05-24 17:15:45
veracode
veracode
Infinite Loop
2024-05-28 04:55:25
cve
cve
CVE-2023-46442
2024-05-24 17:15:45
vulnrichment
vulnrichment
CVE-2023-46442
1976-01-01 00:00:00
githubexploit
githubexploit
Exploit for CVE-2023-46442
2024-05-24 10:03:38
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
AI Score
6.7
Confidence
High
Related for GHSA-HFG7-J82C-FR3W