Vulnerabilities (CVE)

Filtered by vendor Apache Subscribe
Filtered by product Portable Runtime Utility
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-25147 1 Apache 1 Portable Runtime Utility 2024-11-21 N/A 6.5 MEDIUM
Integer Overflow or Wraparound vulnerability in apr_base64 functions of Apache Portable Runtime Utility (APR-util) allows an attacker to write beyond bounds of a buffer. This issue affects Apache Portable Runtime Utility (APR-util) 1.6.1 and prior versions.
CVE-2017-12618 1 Apache 1 Portable Runtime Utility 2024-11-21 1.9 LOW 4.7 MEDIUM
Apache Portable Runtime Utility (APR-util) 1.6.0 and prior fail to validate the integrity of SDBM database files used by apr_sdbm*() functions, resulting in a possible out of bound read access. A local user with write access to the database can make a program or process using these functions crash, and cause a denial of service.