What is CVE-2022-40152?

CVE-2022-40152 is a vulnerability that allows an attacker to cause a denial of service (DoS) in the FasterXML/woodstox package via XML serialization.

How does CVE-2022-40152 affect users?

Users using the woodstox-core package versions up to 6.4.0 or 5.4.0, jenkins version up to 2.387.3.1684911776-3.el8, or any version of eap7-woodstox-core or IBM Disconnected Log Collector up to v1.8.2 are affected by CVE-2022-40152.

How severe is CVE-2022-40152?

CVE-2022-40152 is considered high severity with a CVSS score of 7.

How can I fix CVE-2022-40152?

To fix CVE-2022-40152, update the affected software to version 6.4.0 for woodstox-core, 2.387.3.1684911776-3.el8 for jenkins, or a version higher than v1.8.2 for IBM Disconnected Log Collector.

Where can I find more information about CVE-2022-40152?

You can find more information about CVE-2022-40152 at the following references: [link1], [link2], [link3].

Vulnerability/
CVE-2022-40152

high

7.5

CWE

119 787 121

11/8/2022

3/8/2024

CVE-2022-40152: Stack Buffer Overflow in Woodstox

First published: Thu Aug 11 2022(Updated: )

A flaw was found in the FasterXML/woodstox package. This flaw allows an attacker to cause a denial of service (DoS) in its target via XML serialization. An attacker may benefit from the parser sending a malicious input that may cause a crash. This vulnerability is only relevant for users using the DTD parsing functionality.

Credit: cve-coordination@google.com

Affected Software	Affected Version	How to fix
IBM QRadar SIEM	<=7.5 - 7.5.0 UP7
Xstream Project Xstream	<=1.4.19
Fasterxml Woodstox	<5.4.0
Fasterxml Woodstox	>=6.0.0<6.4.0
redhat/woodstox-core	<6.4.0	6.4.0
redhat/woodstox-core	<5.4.0	5.4.0
redhat/jenkins	<0:2.387.3.1684911776-3.el8	0:2.387.3.1684911776-3.el8
redhat/eap7-woodstox-core	<0:6.4.0-1.redhat_00001.1.el8ea	0:6.4.0-1.redhat_00001.1.el8ea
redhat/eap7-woodstox-core	<0:6.4.0-1.redhat_00001.1.el9ea	0:6.4.0-1.redhat_00001.1.el9ea
redhat/eap7-woodstox-core	<0:6.4.0-1.redhat_00001.1.el7ea	0:6.4.0-1.redhat_00001.1.el7ea

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Frequently Asked Questions

What is CVE-2022-40152?
CVE-2022-40152 is a vulnerability that allows an attacker to cause a denial of service (DoS) in the FasterXML/woodstox package via XML serialization.
How does CVE-2022-40152 affect users?
Users using the woodstox-core package versions up to 6.4.0 or 5.4.0, jenkins version up to 2.387.3.1684911776-3.el8, or any version of eap7-woodstox-core or IBM Disconnected Log Collector up to v1.8.2 are affected by CVE-2022-40152.
How severe is CVE-2022-40152?
CVE-2022-40152 is considered high severity with a CVSS score of 7.
How can I fix CVE-2022-40152?
To fix CVE-2022-40152, update the affected software to version 6.4.0 for woodstox-core, 2.387.3.1684911776-3.el8 for jenkins, or a version higher than v1.8.2 for IBM Disconnected Log Collector.
Where can I find more information about CVE-2022-40152?
You can find more information about CVE-2022-40152 at the following references: [link1], [link2], [link3].

collector/redhat-cve
collector/nvd-index
agent/type
agent/weakness
agent/author
agent/references
agent/softwarecombine
agent/description
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2022-40152
agent/software-canonical-lookup
collector/ibm-support
source/IBM
collector/mitre-cve
source/MITRE
agent/title
agent/severity
agent/last-modified-date
agent/first-publish-date
agent/tags
agent/event
package-manager/redhat
vendor/xstream project
canonical/xstream project xstream
version/xstream project xstream/1.4.19
vendor/fasterxml
canonical/fasterxml woodstox
version/fasterxml woodstox/6.0.0
vendor/ibm
canonical/ibm cloud transformation advisor
version/ibm cloud transformation advisor/2.0.1 - 3.3.1