Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://functional.cafe/users/loke/statuses/114538329362447322">Elias Mårtenson (loke@functional.cafe)'s status on Tuesday, 20-May-2025 13:57:01 JST</a><a href="https://functional.cafe/@loke" title="loke@functional.cafe"><img src="https://gnusocial.jp/avatar/8774-48-20250505174347.webp" width="48" height="48" alt="Elias Mårtenson" style="position: absolute; left: 0; top: 0;">Elias Mårtenson</a></section><article><p>How is Github doing CVSS scoring? I was looking at <a href="https://euvd.enisa.europa.eu/vulnerability/CVE-2022-41966" rel="nofollow">CVE-2022-41966</a> and it has a CVSS vector that indicates Integrity: Low.</p><p>The vulnerability allows an attacker who can feed malicious data to an XML deserialiser to crash the parser with a StackOverflowError. The fix changes this to a different type of exception. How can that in any way be marked as having an integrity impact at all?</p><p>I note that the NIST assessment has the much more appropriate assessment here where there is no impact of integrity.</p><p><a href="https://functional.cafe/tags/infosec" rel="tag">#infosec</a> <a href="https://functional.cafe/tags/cve" rel="tag">#cve</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/5079239#notice-9959651">In conversation</a><time datetime="2025-05-20T13:57:01+09:00" title="Tuesday, 20-May-2025 13:57:01 JST">about a month ago</time> <span>from <span><a href="https://functional.cafe/@loke/114538329362447322" rel="external" title="Sent from functional.cafe via ActivityPub">functional.cafe</a></span></span><a href="https://functional.cafe/@loke/114538329362447322">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Elias Mårtenson (loke@functional.cafe)'s status on Tuesday, 20-May-2025 13:57:01 JST Elias Mårtenson
How is Github doing CVSS scoring? I was looking at CVE-2022-41966 and it has a CVSS vector that indicates Integrity: Low.
The vulnerability allows an attacker who can feed malicious data to an XML deserialiser to crash the parser with a StackOverflowError. The fix changes this to a different type of exception. How can that in any way be marked as having an integrity impact at all?
I note that the NIST assessment has the much more appropriate assessment here where there is no impact of integrity.
#infosec #cve
In conversationabout a month ago from functional.cafepermalink

Public

Embed Notice

HTML Code

Corresponding Notice