EPSS
Percentile
17.6%
poi-scratchpad is vulnerable to denial of service. An attacker can cause an application crash through the out of memory exception by submitting the malicious TNEF file to the TNEFAttribute parameter in the create function of MAPIAttribute.java
TNEFAttribute
create
MAPIAttribute.java
bz.apache.org/bugzilla/show_bug.cgi?id=65899
github.com/advisories/GHSA-mqvp-7rrg-9jxc
github.com/apache/poi/commit/6622d9badb3590cb6190d912730548635a359dc0
lists.apache.org/thread/sprg0kq986pc2271dc3v2oxb1f9qx09j
security.netapp.com/advisory/ntap-20221028-0006/