CVE & CISA-KEV Catalog

CVE-2023-4043

MEDIUM
5.9
CVSS v3
NVD

Description

In Eclipse Parsson before versions 1.1.4 and 1.0.5, Parsing JSON from untrusted sources can lead malicious actors to exploit the fact that the built-in support for parsing numbers with large scale in Java has a number of edge cases where the input text of a number can lead to much larger processing time than one would expect. To mitigate the risk, parsson put in place a size limit for the numbers as well as their scale.

How to fix

Remediation Available
cryostat-techRocky
Fixed in:preview/cryostat-rhel8@sha256:0ad68b37907dd3f36739a64b7251a65c441465a8e4523a9f348e9b5a223c2873_amd64RHSA-2024:0530
Fixed in:preview/cryostat-rhel8@sha256:12f582e13a67d70b5c1a2c700a8f1b431dfa327b369b8d52321db5a89fdf9f03_arm64RHSA-2024:0530
cryostat-techRed Hat / RHEL
Fixed in:preview/cryostat-rhel8@sha256:12f582e13a67d70b5c1a2c700a8f1b431dfa327b369b8d52321db5a89fdf9f03_arm64RHSA-2024:0530
Fixed in:preview/cryostat-rhel8@sha256:0ad68b37907dd3f36739a64b7251a65c441465a8e4523a9f348e9b5a223c2873_amd64RHSA-2024:0530
cryostat-tech-preview/cryostatRed Hat / RHEL
Fixed in:rhel8-operator@sha256:d8003a6fa8936db8577a9509440beb5bc2a2524cee0f60b6f3f6b099f1151563_arm64RHSA-2024:0530
Fixed in:reports-rhel8@sha256:051fabe2bbda1c99fbaa07100f14784df477074797322c68b4f9e5d690728580_amd64RHSA-2024:0530
Fixed in:operator-bundle@sha256:6648c9a1cef7c671209875b0d70cf64cd642c063a0dc925a42a24b839864d606_amd64RHSA-2024:0530
Fixed in:rhel8-operator@sha256:586da55705c6edf6003acf65cb9ef90706941436e51e3999d57defcb266d89b6_amd64RHSA-2024:0530
Fixed in:reports-rhel8@sha256:a7ab8268a14b99b718cd4146b6ecd10b7f50b44a7a317a59206792ba07cc0463_arm64RHSA-2024:0530
Fixed in:operator-bundle@sha256:34b69e9d113e5c4f66a9d11dba0a32e995b971cdaf8385c5fe793b97e2ebc12b_arm64RHSA-2024:0530
cryostat-tech-preview/cryostatRocky
Fixed in:rhel8-operator@sha256:d8003a6fa8936db8577a9509440beb5bc2a2524cee0f60b6f3f6b099f1151563_arm64RHSA-2024:0530
Fixed in:operator-bundle@sha256:34b69e9d113e5c4f66a9d11dba0a32e995b971cdaf8385c5fe793b97e2ebc12b_arm64RHSA-2024:0530
Fixed in:reports-rhel8@sha256:a7ab8268a14b99b718cd4146b6ecd10b7f50b44a7a317a59206792ba07cc0463_arm64RHSA-2024:0530
Fixed in:rhel8-operator@sha256:586da55705c6edf6003acf65cb9ef90706941436e51e3999d57defcb266d89b6_amd64RHSA-2024:0530
Fixed in:operator-bundle@sha256:6648c9a1cef7c671209875b0d70cf64cd642c063a0dc925a42a24b839864d606_amd64RHSA-2024:0530
Fixed in:reports-rhel8@sha256:051fabe2bbda1c99fbaa07100f14784df477074797322c68b4f9e5d690728580_amd64RHSA-2024:0530
cryostat-tech-preview/cryostat-grafanaRed Hat / RHEL
Fixed in:dashboard-rhel8@sha256:3dfe913cbfc5aa0ec61d4273b4be518c28ac27f793b771106213cbec7bd33191_amd64RHSA-2024:0530
Fixed in:dashboard-rhel8@sha256:ee17ca52bd8d4184c5d0b938ef2954997b7dff60158663ffc9f7a21814bd4c9a_arm64RHSA-2024:0530
cryostat-tech-preview/cryostat-grafanaRocky
Fixed in:dashboard-rhel8@sha256:3dfe913cbfc5aa0ec61d4273b4be518c28ac27f793b771106213cbec7bd33191_amd64RHSA-2024:0530
Fixed in:dashboard-rhel8@sha256:ee17ca52bd8d4184c5d0b938ef2954997b7dff60158663ffc9f7a21814bd4c9a_arm64RHSA-2024:0530
cryostat-tech-preview/jfrRed Hat / RHEL
Fixed in:datasource-rhel8@sha256:39b03d257bb1b5bcf041f90b421dfbf4c3f67ad0a1245df84d85675d94b67c82_arm64RHSA-2024:0530
Fixed in:datasource-rhel8@sha256:94c0642a73d2f49d855a577c6ea91953e9a36424ee2af91584aa964622fbc925_amd64RHSA-2024:0530
cryostat-tech-preview/jfrRocky
Fixed in:datasource-rhel8@sha256:94c0642a73d2f49d855a577c6ea91953e9a36424ee2af91584aa964622fbc925_amd64RHSA-2024:0530
Fixed in:datasource-rhel8@sha256:39b03d257bb1b5bcf041f90b421dfbf4c3f67ad0a1245df84d85675d94b67c82_arm64RHSA-2024:0530
eap8-apache-sshdRocky
Fixed in:0:2.12.0-1.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:2.12.0-1.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:2.12.0-1.redhat_00001.1.el9eapRHSA-2024:1193
Fixed in:0:2.12.0-1.redhat_00001.1.el9eapRHSA-2024:1193
eap8-apache-sshdRed Hat / RHEL
Fixed in:0:2.12.0-1.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:2.12.0-1.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:2.12.0-1.redhat_00001.1.el9eapRHSA-2024:1193
Fixed in:0:2.12.0-1.redhat_00001.1.el9eapRHSA-2024:1193
eap8-eclipse-jgitRocky
Fixed in:0:6.6.1.202309021850-1.r_redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:6.6.1.202309021850-1.r_redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:6.6.1.202309021850-1.r_redhat_00001.1.el9eapRHSA-2024:1193
Fixed in:0:6.6.1.202309021850-1.r_redhat_00001.1.el9eapRHSA-2024:1193
eap8-eclipse-jgitRed Hat / RHEL
Fixed in:0:6.6.1.202309021850-1.r_redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:6.6.1.202309021850-1.r_redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:6.6.1.202309021850-1.r_redhat_00001.1.el9eapRHSA-2024:1193
Fixed in:0:6.6.1.202309021850-1.r_redhat_00001.1.el9eapRHSA-2024:1193
eap8-log4jRed Hat / RHEL
Fixed in:0:2.19.0-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:2.19.0-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:2.19.0-2.redhat_00001.1.el9eapRHSA-2024:1193
Fixed in:0:2.19.0-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-log4jRocky
Fixed in:0:2.19.0-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:2.19.0-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:2.19.0-2.redhat_00001.1.el9eapRHSA-2024:1193
Fixed in:0:2.19.0-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-lucene-analyzers-commonRocky
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-lucene-analyzers-commonRed Hat / RHEL
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-lucene-coreRocky
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-lucene-coreRed Hat / RHEL
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-lucene-facetRocky
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-lucene-facetRed Hat / RHEL
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-lucene-joinRed Hat / RHEL
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-lucene-joinRocky
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-lucene-queriesRed Hat / RHEL
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-lucene-queriesRocky
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-lucene-queryparserRed Hat / RHEL
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-lucene-queryparserRocky
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-lucene-solrRocky
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-lucene-solrRed Hat / RHEL
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
Fixed in:0:8.11.2-2.redhat_00001.1.el9eapRHSA-2024:1193
eap8-parssonRed Hat / RHEL
Fixed in:0:1.1.5-1.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:1.1.5-1.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:1.1.5-1.redhat_00001.1.el9eapRHSA-2024:1193
Fixed in:0:1.1.5-1.redhat_00001.1.el9eapRHSA-2024:1193
eap8-parssonRocky
Fixed in:0:1.1.5-1.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:1.1.5-1.redhat_00001.1.el8eapRHSA-2024:1192
Fixed in:0:1.1.5-1.redhat_00001.1.el9eapRHSA-2024:1193
Fixed in:0:1.1.5-1.redhat_00001.1.el9eapRHSA-2024:1193
eap8-wildflyRed Hat / RHEL
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el8eapRHSA-2024:1192
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el8eapRHSA-2024:1192
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el9eapRHSA-2024:1193
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el9eapRHSA-2024:1193
eap8-wildflyRocky
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el8eapRHSA-2024:1192
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el8eapRHSA-2024:1192
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el9eapRHSA-2024:1193
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el9eapRHSA-2024:1193
eap8-wildfly-java-jdk11Rocky
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el8eapRHSA-2024:1192
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el9eapRHSA-2024:1193
eap8-wildfly-java-jdk11Red Hat / RHEL
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el8eapRHSA-2024:1192
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el9eapRHSA-2024:1193
eap8-wildfly-java-jdk17Red Hat / RHEL
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el8eapRHSA-2024:1192
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el9eapRHSA-2024:1193
eap8-wildfly-java-jdk17Rocky
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el8eapRHSA-2024:1192
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el9eapRHSA-2024:1193
eap8-wildfly-modulesRocky
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el8eapRHSA-2024:1192
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el9eapRHSA-2024:1193
eap8-wildfly-modulesRed Hat / RHEL
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el8eapRHSA-2024:1192
Fixed in:0:8.0.1-3.GA_redhat_00002.1.el9eapRHSA-2024:1193

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityHigh
Privileges RequiredNone
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityNone
IntegrityNone
AvailabilityHigh

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploit Intelligence

0.76%probability of exploitation in 30 days
51stpercentile

Moderate risk: more likely to be exploited than 51% of all known CVEs.

References

Embed a live status badge for CVE-2023-4043
CVE-2023-4043 severity badge

Markdown

[![CVE-2023-4043](https://tridentstack.com/cve/badge/CVE-2023-4043.svg)](https://tridentstack.com/cve/CVE-2023-4043)

HTML

<a href="https://tridentstack.com/cve/CVE-2023-4043"><img src="https://tridentstack.com/cve/badge/CVE-2023-4043.svg" alt="CVE-2023-4043"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2024-11-21.