GHSA-7xr3-6ggc-wc9p

Source

https://github.com/advisories/GHSA-7xr3-6ggc-wc9p

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/08/GHSA-7xr3-6ggc-wc9p/GHSA-7xr3-6ggc-wc9p.json

Aliases

CVE-2022-33977
PYSEC-2022-243

Published

2022-08-06T05:30:56Z

Modified

2024-02-16T08:23:04.797604Z

Details

Impact

An attacker may be able to cause a denial-of-service (DoS) condition on the server on which the product is running. This affects untangle versions up to and including 1.2.0

Patches

The problem has been fixed with version 1.2.1

Workarounds

None

References

https://jvn.jp/en/jp/JVN30454777/

For more information

If you have any questions or comments about this advisory: * Open an issue

References

https://github.com/stchris/untangle/security/advisories/GHSA-7xr3-6ggc-wc9p
https://nvd.nist.gov/vuln/detail/CVE-2022-33977
https://github.com/pypa/advisory-database/tree/main/vulns/untangle/PYSEC-2022-243.yaml
https://github.com/stchris/untangle
https://github.com/stchris/untangle/releases/tag/1.2.1
https://jvn.jp/en/jp/JVN30454777

Affected packages

PyPI / untangle

Package

Name: untangle

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

1.2.1

Affected versions

0.*

0.3

0.3.1

0.4.0

1.*

1.0.0

1.1.0

1.1.1

1.2.0