CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-3635

GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer. This may lead to denial of service of the Okio client when handling a crafted GZIP archive, by using the GzipSource class.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 48.0%

CVSS Severity

CVSS v3 Score 5.9

References

Products affected by CVE-2023-3635

Squareup » Okio » Version: 0.5.0

cpe:2.3:a:squareup:okio:0.5.0
Squareup » Okio » Version: 0.6.0

cpe:2.3:a:squareup:okio:0.6.0
Squareup » Okio » Version: 0.6.1

cpe:2.3:a:squareup:okio:0.6.1
Squareup » Okio » Version: 0.7.0

cpe:2.3:a:squareup:okio:0.7.0
Squareup » Okio » Version: 0.8.0

cpe:2.3:a:squareup:okio:0.8.0
Squareup » Okio » Version: 0.9.0

cpe:2.3:a:squareup:okio:0.9.0
Squareup » Okio » Version: 1.0.0

cpe:2.3:a:squareup:okio:1.0.0
Squareup » Okio » Version: 1.0.1

cpe:2.3:a:squareup:okio:1.0.1
Squareup » Okio » Version: 1.1.0

cpe:2.3:a:squareup:okio:1.1.0
Squareup » Okio » Version: 1.10.0

cpe:2.3:a:squareup:okio:1.10.0
Squareup » Okio » Version: 1.11.0

cpe:2.3:a:squareup:okio:1.11.0
Squareup » Okio » Version: 1.12.0

cpe:2.3:a:squareup:okio:1.12.0
Squareup » Okio » Version: 1.13.0

cpe:2.3:a:squareup:okio:1.13.0
Squareup » Okio » Version: 1.14.0

cpe:2.3:a:squareup:okio:1.14.0
Squareup » Okio » Version: 1.14.1

cpe:2.3:a:squareup:okio:1.14.1
Squareup » Okio » Version: 1.15.0

cpe:2.3:a:squareup:okio:1.15.0
Squareup » Okio » Version: 1.16.0

cpe:2.3:a:squareup:okio:1.16.0
Squareup » Okio » Version: 1.17.0

cpe:2.3:a:squareup:okio:1.17.0
Squareup » Okio » Version: 1.17.1

cpe:2.3:a:squareup:okio:1.17.1
Squareup » Okio » Version: 1.17.2

cpe:2.3:a:squareup:okio:1.17.2
Squareup » Okio » Version: 1.17.3

cpe:2.3:a:squareup:okio:1.17.3
Squareup » Okio » Version: 1.17.4

cpe:2.3:a:squareup:okio:1.17.4
Squareup » Okio » Version: 1.17.5

cpe:2.3:a:squareup:okio:1.17.5
Squareup » Okio » Version: 1.2.0

cpe:2.3:a:squareup:okio:1.2.0
Squareup » Okio » Version: 1.3.0

cpe:2.3:a:squareup:okio:1.3.0
Squareup » Okio » Version: 1.4.0

cpe:2.3:a:squareup:okio:1.4.0
Squareup » Okio » Version: 1.5.0

cpe:2.3:a:squareup:okio:1.5.0
Squareup » Okio » Version: 1.6.0

cpe:2.3:a:squareup:okio:1.6.0
Squareup » Okio » Version: 1.7.0

cpe:2.3:a:squareup:okio:1.7.0
Squareup » Okio » Version: 1.8.0

cpe:2.3:a:squareup:okio:1.8.0
Squareup » Okio » Version: 1.9.0

cpe:2.3:a:squareup:okio:1.9.0
Squareup » Okio » Version: 2.0.0

cpe:2.3:a:squareup:okio:2.0.0
Squareup » Okio » Version: 2.1.0

cpe:2.3:a:squareup:okio:2.1.0
Squareup » Okio » Version: 2.10.0

cpe:2.3:a:squareup:okio:2.10.0
Squareup » Okio » Version: 2.2.0

cpe:2.3:a:squareup:okio:2.2.0
Squareup » Okio » Version: 2.2.1

cpe:2.3:a:squareup:okio:2.2.1
Squareup » Okio » Version: 2.2.2

cpe:2.3:a:squareup:okio:2.2.2
Squareup » Okio » Version: 2.3.0

cpe:2.3:a:squareup:okio:2.3.0
Squareup » Okio » Version: 2.4.0

cpe:2.3:a:squareup:okio:2.4.0
Squareup » Okio » Version: 2.4.1

cpe:2.3:a:squareup:okio:2.4.1
Squareup » Okio » Version: 2.4.2

cpe:2.3:a:squareup:okio:2.4.2
Squareup » Okio » Version: 2.4.3

cpe:2.3:a:squareup:okio:2.4.3
Squareup » Okio » Version: 2.5.0

cpe:2.3:a:squareup:okio:2.5.0
Squareup » Okio » Version: 2.6.0

cpe:2.3:a:squareup:okio:2.6.0
Squareup » Okio » Version: 2.7.0

cpe:2.3:a:squareup:okio:2.7.0
Squareup » Okio » Version: 2.8.0

cpe:2.3:a:squareup:okio:2.8.0
Squareup » Okio » Version: 2.9.0

cpe:2.3:a:squareup:okio:2.9.0
Squareup » Okio » Version: 3.0.0

cpe:2.3:a:squareup:okio:3.0.0
Squareup » Okio » Version: 3.1.0

cpe:2.3:a:squareup:okio:3.1.0
Squareup » Okio » Version: 3.2.0

cpe:2.3:a:squareup:okio:3.2.0
Squareup » Okio » Version: 3.3.0

cpe:2.3:a:squareup:okio:3.3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-3635

Products

Pricing

Contact Us