nekohtml is vulnerable to denial of service. The vulnerability exists due to a memory corruption allowing an attacker to crash the system via a maliciously crafted HTML markup.

References

github.com/sparklemotion/nekohtml/commit/a800fce3b079def130ed42a408ff1d09f89e773d

github.com/sparklemotion/nekohtml/security/advisories/GHSA-9849-p7jc-9rmv

www.oracle.com/security-alerts/cpujul2022.html

ibm 30

nvd 2

github 2

prion 2

rubygems 1

debiancve 2

osv 7

cvelist 2

cve 2

nessus 4

atlassian 5

ubuntucve 2

redhatcve 1

oracle 6

ibm

Security Bulletin: IBM WebSphere Application Server Liberty is vulnerable to a Denial of Service due to Neko HTML (CVE-2022-24839)

2022-09-28 16:48:59

Security Bulletin: IBM Security Verify Governance is vulnerable to denial of service (CVE-2022-24839)

2023-04-20 10:45:00

Security Bulletin: Vulnerability has been identified in WebSphere Application Server Liberty shipped with Cloud Pak System (CVE-2022-24839)

2022-12-02 23:51:35

nvd

CVE-2022-24839

2022-04-11 22:15:07

CVE-2022-28366

2022-04-21 23:15:10

github

Denial of Service (DoS) in Nokogiri on JRuby

2022-04-11 21:38:11

org.nokogiri:nekohtml vulnerable to Uncontrolled Resource Consumption

2023-06-22 19:58:54

prion

Design/Logic Flaw

2022-04-11 22:15:00

Input validation

2022-04-21 23:15:00

rubygems

Denial of Service (DoS) in Nokogiri on JRuby

2022-04-10 21:00:00

debiancve

CVE-2022-24839

2022-04-11 22:15:07

CVE-2022-28366

2022-04-21 23:15:10

osv

Denial of Service (DoS) in Nokogiri on JRuby

2022-04-11 21:38:11

CVE-2022-24839

2022-04-11 22:15:07

org.nokogiri:nekohtml vulnerable to Uncontrolled Resource Consumption

2023-06-22 19:58:54

cvelist

CVE-2022-24839 Uncontrolled Resource Consumption in org.cyberneko.html (nokogiri fork)

2022-04-11 21:25:12

CVE-2022-28366

2022-04-21 22:41:53

cve

CVE-2022-24839

2022-04-11 22:15:07

CVE-2022-28366

2022-04-21 23:15:10

nessus

Atlassian JIRA Service Desk < 4.20.28 / 5.4.x < 5.4.12 / 5.5.x < 5.11.3 / 5.12.0 (JSDSERVER-14872)

2024-01-11 00:00:00

Atlassian Jira Service Management Data Center and Server 4.20 < 4.20.28 / 5.4.x < 5.4.12 / 5.5.x < 5.11.3 / 5.12.0 (JSDSERVER-14921)

2024-01-12 00:00:00

Atlassian Confluence 7.13.x / 8.1.x / 8.2.x / 8.3.x / 8.6.0 < 8.6.1 (CONFSERVER-93169)

2023-11-22 00:00:00

atlassian

DoS (Denial of Service) net.sourceforge.nekohtml:nekohtml Vulnerability in Jira Service Management Data Center and Server

2023-11-22 02:44:58

DoS (Denial of Service) net.sourceforge.nekohtml:nekohtml Dependency in Jira Software Data Center and Server

2024-03-07 14:45:41

DoS (Denial of Service) net.sourceforge.nekohtml:nekohtml Vulnerability in Jira Service Management Data Center and Server

2023-12-04 20:45:34

ubuntucve

CVE-2022-24839

2022-04-11 00:00:00

CVE-2022-28366

2022-04-21 00:00:00

redhatcve

CVE-2022-24839

2022-04-12 04:59:47

oracle

Oracle Critical Patch Update Advisory - October 2023

2023-10-17 00:00:00

Oracle Critical Patch Update Advisory - January 2024

2024-01-16 00:00:00

Oracle Critical Patch Update Advisory - January 2023

2023-01-17 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.002

Percentile

57.1%

JSON

Related for VERACODE:35066