GSA_kwCzR0hTQS0zcDczLW1tN3YtNGY2bc4AAxOW

Moderate EPSS: 0.00127% (0.33123 Percentile) EPSS:

Permalink JSON

DoS vulnerability in MaliciousCode filter

Affected Packages	Affected Versions	Fixed Versions
packagist:openmage/magento-lts	>= 20.0.0, < 20.0.19, < 19.4.22	20.0.19, 19.4.22
21 Dependent packages 31 Dependent repositories 200,644 Downloads total Affected Version Ranges All affected versions 19.4.0, 19.4.1, 19.4.2, 19.4.3, 19.4.4, 19.4.5, 19.4.6, 19.4.7, 19.4.8, 19.4.9, 19.4.10, 19.4.11, 19.4.12, 19.4.13, 19.4.14, 19.4.15, 19.4.16, 19.4.17, 19.4.18, 19.4.19, 19.4.20, 19.4.21, 20.0.0, 20.0.1, 20.0.2, 20.0.3, 20.0.4, 20.0.5, 20.0.6, 20.0.7, 20.0.8, 20.0.10, 20.0.11, 20.0.12, 20.0.13, 20.0.14, 20.0.15, 20.0.16, 20.0.17, 20.0.18 All unaffected versions 19.4.22, 19.4.23, 19.5.0, 19.5.1, 19.5.2, 19.5.3, 20.0.19, 20.0.20, 20.1.0, 20.1.1, 20.2.0, 20.3.0, 20.4.0, 20.5.0, 20.6.0, 20.7.0, 20.8.0, 20.9.0, 20.10.0, 20.10.1, 20.10.2, 20.11.0, 20.12.0, 20.12.1, 20.12.2, 20.12.3, 20.13.0, 20.14.0, 20.15.0

Impact

Infinite loop in malicious code filter in certain conditions.

Workarounds

None

References:

Identifiers

GHSA-3p73-mm7v-4f6m

CVE-2023-23617

Risk

Severity

Moderate

EPSS

EPSS Percentage: 0.00127

EPSS Percentile: 0.33123

Classification

General

Source

GitHub Advisory Database

Origin

Unspecified

Repository

https://github.com/OpenMage/magento-lts

Date and time

Published

over 2 years ago

Updated

over 2 years ago

API

JSON

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Advisories