GHSA-wxwq-525w-hcqx
Suggest an improvement- Source
- https://github.com/advisories/GHSA-wxwq-525w-hcqx
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/03/GHSA-wxwq-525w-hcqx/GHSA-wxwq-525w-hcqx.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-wxwq-525w-hcqx
- Aliases
- Published
- 2023-03-03T23:05:28Z
- Modified
- 2024-08-20T20:59:07.092833Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- Yapscan Denial of Service vulnerability in report server
- Details
-
Impact
If you use the report server, it may be vulnerable to a Denial of Service attack.
Patches
Has been patched in v0.19.2.
References
The vulnerability was inherited by the following upstream vulnerabilites
- Database specific
{ "cwe_ids": [], "github_reviewed_at": "2023-03-03T23:05:28Z", "nvd_published_at": null, "severity": "HIGH", "github_reviewed": true }- References
-
- https://github.com/fkie-cad/yapscan/security/advisories/GHSA-wxwq-525w-hcqx
- https://github.com/fkie-cad/yapscan/pull/46
- https://github.com/fkie-cad/yapscan/commit/242b4b25b107deacddd4ca276b45d23e16bb3b88
- https://github.com/fkie-cad/yapscan/commit/65f277662c6475eb3f592e0e4fdfee902ecd9326
- https://github.com/advisories/GHSA-69cg-p879-7622
- https://github.com/advisories/GHSA-ppp9-7jff-5vj2
- https://github.com/fkie-cad/yapscan
- https://github.com/fkie-cad/yapscan/releases/tag/v0.19.2
Affected packages
Go / github.com/fkie-cad/yapscan
Package
- Name
- github.com/fkie-cad/yapscan
- View open source insights on deps.dev
- Purl
- pkg:golang/github.com/fkie-cad/yapscan