Vulnerabilities > Apache > Avro > 0.1.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-09 | CVE-2022-35724 | Infinite Loop vulnerability in Apache Avro It is possible to provide data to be read that leads the reader to loop in cycles endlessly, consuming CPU. | 7.5 |
| 2022-08-09 | CVE-2022-36124 | Allocation of Resources Without Limits or Throttling vulnerability in Apache Avro It is possible for a Reader to consume memory beyond the allowed constraints and thus lead to out of memory on the system. | 7.5 |
| 2022-08-09 | CVE-2022-36125 | Integer Overflow or Wraparound vulnerability in Apache Avro It is possible to crash (panic) an application by providing a corrupted data to be read. | 7.5 |