Vulnerabilities > CVE-2023-48952 - Deserialization of Untrusted Data vulnerability in Openlinksw Virtuoso 7.2.11

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
openlinksw
CWE-502

Summary

An issue in the box_deserialize_reusing function in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) after running a SELECT statement.

Vulnerable Configurations

Part Description Count
Application
Openlinksw
1

Common Weakness Enumeration (CWE)