Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Oracle HTTP Server Uncontrolled Resource Consumption Vulnerability - CVE-2022-25313 - Vulnerability Database
Oracle HTTP Server

Oracle HTTP Server Uncontrolled Resource Consumption Vulnerability - CVE-2022-25313

Medium
Reference: CVE-2022-25313
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-25313
Title: Oracle HTTP Server Uncontrolled Resource Consumption Vulnerability
Overview:

In Expat (aka libexpat) before 2.4.5 an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element.