Out of Memory Vulnerability in JLine Groovy Component
CVE-2023-50572

5.5MEDIUM

Key Information:

Vendor

Jline

Status
Vendor
CVE Published:
29 December 2023

What is CVE-2023-50572?

The vulnerability in the GroovyEngine component of jline-groovy v3.24.1 enables attackers to exploit system resources by triggering an Out of Memory (OOM) condition. This can lead to server crashes or degraded performance, making it essential for users to apply necessary security updates and mitigate potential risks.

References

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.