sonatype-2012-0050

sonatype-2012-0050

commons-codec - Base32 would decode some invalid Base32 encoded string into arbitrary value

Published Nov 22, 2017

CVSS ScoreMedium

5.3

sonatype-2012-0050

commons-codec - Base32 would decode some invalid Base32 encoded string into arbitrary value

Published Nov 22, 2017

CVSS ScoreMedium

5.3

CVE ID: sonatype-2012-0050
CWE: N/A
CVE Description: commons-codec - Base32 would decode some invalid Base32 encoded string into arbitrary value
Published: Nov 22, 2017
CVSS Score & Severity: 5.3Medium
CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
EPSS Score: 0%
Malware: malware
KEV Status: Not in KEV Catalog: No known exploits
Vulnerable Methods: org/apache/commons/codec/binary/Base64.decodeBase64([B)[B
JVMVulnerable params: 0
Affected Ecosystems: affected
Source: Sonatype
References: Apache Jira · CODEC-134PROJECT
Apache Jira · CODEC-270PROJECT

CVE ID: sonatype-2012-0050
CWE: N/A
CVE Description: commons-codec - Base32 would decode some invalid Base32 encoded string into arbitrary value
Published: Nov 22, 2017
CVSS Score & Severity: 5.3Medium
CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
EPSS Score: 0%
Malware: malware
KEV Status: Not in KEV Catalog: No known exploits
Vulnerable Methods: org/apache/commons/codec/binary/Base64.decodeBase64([B)[B
JVMVulnerable params: 0
Affected Ecosystems: affected
Source: Sonatype
References: Apache Jira · CODEC-134PROJECT
Apache Jira · CODEC-270PROJECT

Find vulnerabilities. Fix fast with AI.