CVE-2023-5685

{"id": "CVE-2023-5685", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "secalert@redhat.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2024-03-22T19:15:07.983", "references": [{"url": "https://access.redhat.com/errata/RHSA-2023:7637", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2023:7638", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2023:7639", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2023:7641", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:2707", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/security/cve/CVE-2023-5685", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241822", "source": "secalert@redhat.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Primary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-400"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in XNIO. The XNIO NotifierState that can cause a Stack Overflow Exception when the chain of notifier states becomes problematically large can lead to uncontrolled resource management and a possible denial of service (DoS)."}, {"lang": "es", "value": "Se encontr\u00f3 una falla en XNIO. El XNIO NotifierState que puede provocar una excepci\u00f3n de desbordamiento de pila cuando la cadena de estados de notificador se vuelve problem\u00e1ticamente grande puede provocar una gesti\u00f3n descontrolada de recursos y una posible denegaci\u00f3n de servicio (DoS)."}], "lastModified": "2024-05-08T09:15:08.417", "sourceIdentifier": "secalert@redhat.com"}