CVE-2023-3894

Those using jackson-dataformats-text to parse TOML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50083	Issue Tracking Patch Third Party Advisory
https://github.com/FasterXML/jackson-dataformats-text/blob/2.16/release-notes/VERSION-2.x	Release Notes
https://github.com/FasterXML/jackson-dataformats-text/pull/398	Patch

Configurations

Configuration 1 (hide)

cpe:2.3:a:fasterxml:jackson-dataformats-text:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2023-08-08 18:15

Updated : 2023-08-15 19:28

NVD link : CVE-2023-3894

Mitre link : CVE-2023-3894

CVE.ORG link : CVE-2023-3894

JSON object : View

Products Affected

fasterxml

jackson-dataformats-text

CWE

CWE-787

Out-of-bounds Write

CWE-20

Improper Input Validation

{"id": "CVE-2023-3894", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "cve-coordination@google.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2023-08-08T18:15:24.297", "references": [{"url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50083", "tags": ["Issue Tracking", "Patch", "Third Party Advisory"], "source": "cve-coordination@google.com"}, {"url": "https://github.com/FasterXML/jackson-dataformats-text/blob/2.16/release-notes/VERSION-2.x", "tags": ["Release Notes"], "source": "cve-coordination@google.com"}, {"url": "https://github.com/FasterXML/jackson-dataformats-text/pull/398", "tags": ["Patch"], "source": "cve-coordination@google.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-787"}]}, {"type": "Secondary", "source": "cve-coordination@google.com", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Those using jackson-dataformats-text to parse TOML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.\n"}], "lastModified": "2023-08-15T19:28:31.137", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:fasterxml:jackson-dataformats-text:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8EA5DD6F-240A-4691-B691-1D38B8B4165A", "versionEndExcluding": "2.15.0"}], "operator": "OR"}]}], "sourceIdentifier": "cve-coordination@google.com"}