VDB
CVE-2023-48945
CVE-2023-48945
PUBLISHED
CVSS 9.300000190734863 CRITICAL
A stack overflow in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
EPSS 0.11% · 29.1th percentile
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.11%
29.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a, n/a |
| openlinksw | virtuoso | 7.2.11, 7.2.11, 7.2.11 |
Exploit Intelligence
- CIRCL seen: CVE-2023-48945 (circl-sighting)
- CIRCL seen: CVE-2023-48945 (circl-sighting)
- https://github.com/openlink/virtuoso-opensource/issues/1172 (nist-nvd)
Timeline
- Nov 29, 2023 CVE Published
- Dec 1, 2023 EPSS Score
- Dec 20, 2023 PoC Published
- Dec 31, 2023 EPSS Score
- Jan 4, 2024 PoC Published
- Jan 29, 2024 EPSS Score
- Feb 28, 2024 EPSS Score
- Mar 29, 2024 EPSS Score
- Apr 27, 2024 EPSS Score
- May 27, 2024 EPSS Score
- Jun 26, 2024 EPSS Score
- Jul 25, 2024 EPSS Score