Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-50572

Published: 29/12/2023 Updated: 05/01/2024
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Jline

Vulnerability Summary

An issue in the component GroovyEngine.execute of jline-groovy v3.24.1 allows malicious users to cause an OOM (OutofMemory) error.

Vulnerable Product Search on Vulmon Subscribe to Product

jline jline 3.24.1

Vendor Advisories

Debian CVElist Bug Report Logs: jline3: CVE-2023-50572
Debian Bug report logs - #1059726 jline3: CVE-2023-50572 Package: src:jline3; Maintainer for src:jline3 is Debian Java Maintainers <pkg-java-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 30 Dec 2023 20:15:01 UTC Severity: important Tags: security, upstream Fou ...

Github Repositories

https://github.com/danielpaval/spring-statemachine-demo

Spring Statemachine Demo Fork of spring-statemachine-samples/turnstile: As standalone Maven project Using Spring Shell 320 Notes CVE-2023-50572 vulnerability due to JLine weakness

References

CWE-787https://github.com/jline/jline3/issues/909https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059726https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-3400deserializationCVE-2024-21788CVE-2023-42433CVE-2024-21841CVE-2024-22095local file inclusionmemory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook