1. Home
  2. Vulnerabilities
  3. CVE-2023-2798

CVE-2023-2798

CVSS v3.1 7.5 (High)
75% Progress
EPSS 0.09 % (38th)
0.09% Progress
Affected Products 1
Advisories 1
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software Graph Web & Social Timeline

Those using HtmlUnit to browse untrusted webpages may be vulnerable to Denial of service attacks (DoS). If HtmlUnit is running on user supplied web pages, an attacker may supply content that causes HtmlUnit to crash by a stack overflow. This effect may support a denial of service attack.This issue affects htmlunit before 2.70.0.

Weaknesses
CWE-400
Uncontrolled Resource Consumption
CWE-787
Out-of-bounds Write
CVE Status
PUBLISHED
CNA
Google Inc.
Published Date
2023-05-25 14:15:10
(16 months ago)
Updated Date
2023-12-07 17:56:27
(9 months ago)

Affected Products

Htmlunit

Configuration #1

    CPE23 From Up To
  Htmlunit prior 2.70.0 version cpe:2.3:a:htmlunit:htmlunit < 2.70.0