CVE-2021-28657 - CERT CVE

  1. CVE-2021-28657

ID CVE-2021-28657
Sažetak A carefully crafted or corrupt file may trigger an infinite loop in Tika's MP3Parser up to and including Tika 1.25. Apache Tika users should upgrade to 1.26 or later.
Reference
CVSS
Base: 4.3
Impact: 2.9
Exploitability:8.6
Pristup
VektorSloženostAutentikacija
NETWORK MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE NONE PARTIAL
CVSS vektor AV:N/AC:M/Au:N/C:N/I:N/A:P
Zadnje važnije ažuriranje 07-11-2023 - 03:32
Objavljeno 31-03-2021 - 08:15