CVE-2022-41404

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2022-41404

Severity

Unknown

Description

An issue in the fetch() method in the BasicProfile class of org.ini4j through version v0.5.4 allows attackers to cause a Denial of Service (DoS) via unspecified vectors.

References

https://images.chainguard.dev/security/CGA-jh47-fgg2-9crj
https://github.com/advisories/GHSA-jr6h-r7vg-f9mc
https://images.chainguard.dev/security/CGA-6phv-crwg-g8h3
https://lists.debian.org/debian-lts-announce/2022/11/msg00037.html
https://sourceforge.net/p/ini4j/bugs/56/
https://github.com/Checkmarx/Vulnerabilities-Proofs-of-Concept/tree/main/2022/CVE-2022-41404
https://security-tracker.debian.org/tracker/CVE-2022-41404

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

CVE-2022-41404

Severity

Description

References

Affected packages

Products

Why Chainguard

Customers

Company

Resources