QwikSec

Security Database

CVE

CWE

Training

CVE-2022-25147

Published: Jan 31, 2023

Modified: Feb 13, 2025

PUBLISHED

Description

Integer Overflow or Wraparound vulnerability in apr_base64 functions of Apache Portable Runtime Utility (APR-util) allows an attacker to write beyond bounds of a buffer. This issue affects Apache Portable Runtime Utility (APR-util) 1.6.1 and prior versions.

Vendor	Product	Versions
Apache Software Foundation	Apache Portable Runtime Utility (APR-util)	affected `0 - <= 1.6.1`

Weaknesses (CWE)

References

https://lists.apache.org/thread/np5gjqlohc4f62lr09vrn61vl44cylh8

vendor-advisory

https://security.netapp.com/advisory/ntap-20240315-0001/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.