CVE-2023-3894
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-3894
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-3894.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-3894
- Aliases
- Related
- Published
- 2023-08-08T18:15:24Z
- Modified
- 2024-05-14T12:58:37.526261Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Those using jackson-dataformats-text to parse TOML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.
- References
Affected packages
Git / github.com/fasterxml/jackson-dataformats-text
Affected ranges
- Type
- GIT
- Repo
- https://github.com/fasterxml/jackson-dataformats-text
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
2.*
2.9.6-b
jackson-dataformats-text-2.*
jackson-dataformats-text-2.10.0
jackson-dataformats-text-2.10.0.pr1
jackson-dataformats-text-2.10.0.pr2
jackson-dataformats-text-2.10.0.pr3
jackson-dataformats-text-2.10.1
jackson-dataformats-text-2.10.2
jackson-dataformats-text-2.10.3
jackson-dataformats-text-2.10.4
jackson-dataformats-text-2.10.5
jackson-dataformats-text-2.11.0
jackson-dataformats-text-2.11.0.rc1
jackson-dataformats-text-2.11.1
jackson-dataformats-text-2.11.2
jackson-dataformats-text-2.11.3
jackson-dataformats-text-2.11.4
jackson-dataformats-text-2.12.0
jackson-dataformats-text-2.12.0-rc1
jackson-dataformats-text-2.12.0-rc2
jackson-dataformats-text-2.12.1
jackson-dataformats-text-2.12.2
jackson-dataformats-text-2.12.3
jackson-dataformats-text-2.12.4
jackson-dataformats-text-2.12.5
jackson-dataformats-text-2.12.6
jackson-dataformats-text-2.12.7
jackson-dataformats-text-2.13.0
jackson-dataformats-text-2.13.0-rc1
jackson-dataformats-text-2.13.0-rc2
jackson-dataformats-text-2.13.1
jackson-dataformats-text-2.13.2
jackson-dataformats-text-2.13.3
jackson-dataformats-text-2.13.4
jackson-dataformats-text-2.13.5
jackson-dataformats-text-2.14.0
jackson-dataformats-text-2.14.0-rc1
jackson-dataformats-text-2.14.0-rc2
jackson-dataformats-text-2.14.0-rc3
jackson-dataformats-text-2.14.1
jackson-dataformats-text-2.14.2
jackson-dataformats-text-2.15.0-rc1
jackson-dataformats-text-2.15.0-rc2
jackson-dataformats-text-2.15.0-rc3
jackson-dataformats-text-2.9.0
jackson-dataformats-text-2.9.0.pr2
jackson-dataformats-text-2.9.0.pr3
jackson-dataformats-text-2.9.0.pr4
jackson-dataformats-text-2.9.1
jackson-dataformats-text-2.9.10
jackson-dataformats-text-2.9.2
jackson-dataformats-text-2.9.3
jackson-dataformats-text-2.9.4
jackson-dataformats-text-2.9.5
jackson-dataformats-text-2.9.6
jackson-dataformats-text-2.9.7
jackson-dataformats-text-2.9.8
jackson-dataformats-text-2.9.9