CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-25147 – Apache Portable Runtime Utility (APR-util): out-of-bounds writes in the apr_base64 family of functions
https://notcve.org/view.php?id=CVE-2022-25147
31 Jan 2023 — Integer Overflow or Wraparound vulnerability in apr_base64 functions of Apache Portable Runtime Utility (APR-util) allows an attacker to write beyond bounds of a buffer. This issue affects Apache Portable Runtime Utility (APR-util) 1.6.1 and prior versions. Vulnerabilidad de desbordamiento de enteros o envoltura en las funciones apr_base64 de Apache Portable Runtime Utility (APR-util) permite a un atacante escribir más allá de los límites de un búfer. Este problema afecta a Apache Portable Runtime Utility (... • https://lists.apache.org/thread/np5gjqlohc4f62lr09vrn61vl44cylh8 • CWE-190: Integer Overflow or Wraparound •
CVSS: 4.7EPSS: 0%CPEs: 59EXPL: 0CVE-2017-12618 – Ubuntu Security Notice USN-5737-1
https://notcve.org/view.php?id=CVE-2017-12618
24 Oct 2017 — Apache Portable Runtime Utility (APR-util) 1.6.0 and prior fail to validate the integrity of SDBM database files used by apr_sdbm*() functions, resulting in a possible out of bound read access. A local user with write access to the database can make a program or process using these functions crash, and cause a denial of service. Apache Portable Runtime Utility (APR-util) en versiones 1.6.0 y anteriores falla a la hora de validar la integridad de los archivos de la base de datos SDBM utilizados por la funciÃ... • http://mail-archives.apache.org/mod_mbox/apr-dev/201710.mbox/%3CCACsi252POs4toeJJciwg09_eu2cO3XFg%3DUqsPjXsfjDoeC3-UQ%40mail.gmail.com%3E • CWE-125: Out-of-bounds Read •