← voltar
CVE-2022-40160

Stack Overflow in JXPath

EPSS 1.2%CWE-121
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 1.2%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
06 out 2022Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
** DISPUTED ** This record was originally reported by the oss-fuzz project who failed to consider the security context in which JXPath is intended to be used and failed to contact the JXPath maintainers prior to requesting the CVE allocation. The CVE was then allocated by Google in breach of the CNA rules. After review by the JXPath maintainers, the original report was found to be invalid.
Produtos afetados
jxpath · jxpath

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →