Integer Overflow or Wraparound vulnerability in apr_encode functions of Apache Portable Runtime (APR) allows an attacker to write beyond bounds of a buffer.
This issue affects Apache Portable Runtime (APR) version 1.7.0.
References
Link | Resource |
---|---|
https://lists.apache.org/thread/fw9p6sdncwsjkstwc066vz57xqzfksq9 | Mailing List Vendor Advisory |
https://security.netapp.com/advisory/ntap-20230908-0008/ |
Configurations
History
08 Sep 2023, 17:15
Type | Values Removed | Values Added |
---|---|---|
Summary | Integer Overflow or Wraparound vulnerability in apr_encode functions of Apache Portable Runtime (APR) allows an attacker to write beyond bounds of a buffer. This issue affects Apache Portable Runtime (APR) version 1.7.0. | |
References |
|
07 Feb 2023, 21:43
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
References | (MISC) https://lists.apache.org/thread/fw9p6sdncwsjkstwc066vz57xqzfksq9 - Mailing List, Vendor Advisory | |
CPE | cpe:2.3:a:apache:portable_runtime:1.7.0:*:*:*:*:*:*:* | |
First Time |
Apache
Apache portable Runtime |
31 Jan 2023, 17:37
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-01-31 16:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-24963
Mitre link : CVE-2022-24963
CVE.ORG link : CVE-2022-24963
JSON object : View
Products Affected
apache
- portable_runtime
CWE
CWE-190
Integer Overflow or Wraparound