CVE-2022-24294 - OpenCVE

A regular expression used in Apache MXNet (incubating) is vulnerable to a potential denial-of-service by excessive resource consumption. The bug could be exploited when loading a model in Apache MXNet that has a specially crafted operator name that would cause the regular expression evaluation to use excessive resources to attempt a match. This issue affects Apache MXNet versions prior to 1.9.1.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Apache	Mxnet

Configuration 1 [-]

cpe:2.3:a:apache:mxnet:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://www.openwall.com/lists/oss-security/2022/07/24/2
https://lists.apache.org/thread/b1fbfmvzlr2bbp95lqoh3mtovclfcl3o

History

No history.

MITRE

Status: PUBLISHED

Assigner: apache

Published: 2022-07-24T17:45:12

Updated: 2024-08-03T04:07:02.340Z

Reserved: 2022-02-01T00:00:00

Link: CVE-2022-24294

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2022-07-24T18:15:09.587

Modified: 2022-08-01T16:01:00.140

Link: CVE-2022-24294

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "Apache MXNet", "vendor": "Apache Software Foundation", "versions": [{"lessThan": "1.9.1", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "Apache MXNet would like to thank Dwi Siswanto for reporting this issue."}], "descriptions": [{"lang": "en", "value": "A regular expression used in Apache MXNet (incubating) is vulnerable to a potential denial-of-service by excessive resource consumption. The bug could be exploited when loading a model in Apache MXNet that has a specially crafted operator name that would cause the regular expression evaluation to use excessive resources to attempt a match. This issue affects Apache MXNet versions prior to 1.9.1."}], "metrics": [{"other": {"content": {"other": "low"}, "type": "unknown"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-400", "description": "CWE-400 Uncontrolled Resource Consumption", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2022-07-24T20:06:12", "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "shortName": "apache"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://lists.apache.org/thread/b1fbfmvzlr2bbp95lqoh3mtovclfcl3o"}, {"name": "[oss-security] 20220724 CVE-2022-24294: ReDoS in Apache MXNet RTC Module", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2022/07/24/2"}], "source": {"discovery": "UNKNOWN"}, "timeline": [{"lang": "en", "time": "2021-11-25T00:00:00", "value": "reported"}, {"lang": "en", "time": "2022-01-17T00:00:00", "value": "fix merged into master branch"}, {"lang": "en", "time": "2022-01-27T00:00:00", "value": "fix merged into v1.x, v1.9.x branches"}, {"lang": "en", "time": "2022-05-27T00:00:00", "value": "Apache MXNet (incubating) 1.9.1 released which contains fix."}], "title": "ReDoS in Apache MXNet RTC Module", "workarounds": [{"lang": "en", "value": "Users that depend on MXNet 1.x are advised to upgrade to MXNet>=1.9.1,<2"}], "x_generator": {"engine": "Vulnogram 0.0.9"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@apache.org", "ID": "CVE-2022-24294", "STATE": "PUBLIC", "TITLE": "ReDoS in Apache MXNet RTC Module"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Apache MXNet", "version": {"version_data": [{"version_affected": "<", "version_value": "1.9.1"}]}}]}, "vendor_name": "Apache Software Foundation"}]}}, "credit": [{"lang": "eng", "value": "Apache MXNet would like to thank Dwi Siswanto for reporting this issue."}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A regular expression used in Apache MXNet (incubating) is vulnerable to a potential denial-of-service by excessive resource consumption. The bug could be exploited when loading a model in Apache MXNet that has a specially crafted operator name that would cause the regular expression evaluation to use excessive resources to attempt a match. This issue affects Apache MXNet versions prior to 1.9.1."}]}, "generator": {"engine": "Vulnogram 0.0.9"}, "impact": [{"other": "low"}], "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-400 Uncontrolled Resource Consumption"}]}]}, "references": {"reference_data": [{"name": "https://lists.apache.org/thread/b1fbfmvzlr2bbp95lqoh3mtovclfcl3o", "refsource": "MISC", "url": "https://lists.apache.org/thread/b1fbfmvzlr2bbp95lqoh3mtovclfcl3o"}, {"name": "[oss-security] 20220724 CVE-2022-24294: ReDoS in Apache MXNet RTC Module", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2022/07/24/2"}]}, "source": {"discovery": "UNKNOWN"}, "timeline": [{"lang": "en", "time": "2021-11-25T00:00:00", "value": "reported"}, {"lang": "en", "time": "2022-01-17T00:00:00", "value": "fix merged into master branch"}, {"lang": "en", "time": "2022-01-27T00:00:00", "value": "fix merged into v1.x, v1.9.x branches"}, {"lang": "en", "time": "2022-05-27T00:00:00", "value": "Apache MXNet (incubating) 1.9.1 released which contains fix."}], "work_around": [{"lang": "en", "value": "Users that depend on MXNet 1.x are advised to upgrade to MXNet>=1.9.1,<2"}]}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T04:07:02.340Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://lists.apache.org/thread/b1fbfmvzlr2bbp95lqoh3mtovclfcl3o"}, {"name": "[oss-security] 20220724 CVE-2022-24294: ReDoS in Apache MXNet RTC Module", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2022/07/24/2"}]}]}, "cveMetadata": {"assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "assignerShortName": "apache", "cveId": "CVE-2022-24294", "datePublished": "2022-07-24T17:45:12", "dateReserved": "2022-02-01T00:00:00", "dateUpdated": "2024-08-03T04:07:02.340Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:mxnet:*:*:*:*:*:*:*:*", "matchCriteriaId": "CF32D44D-C18B-4E0A-9AA2-5CE197CB8FB7", "versionEndExcluding": "1.9.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A regular expression used in Apache MXNet (incubating) is vulnerable to a potential denial-of-service by excessive resource consumption. The bug could be exploited when loading a model in Apache MXNet that has a specially crafted operator name that would cause the regular expression evaluation to use excessive resources to attempt a match. This issue affects Apache MXNet versions prior to 1.9.1."}, {"lang": "es", "value": "Una expresi\u00f3n regular usa en Apache MXNet (incubating) es vulnerable a una potencial denegaci\u00f3n de servicio por consumo excesivo de recursos. El fallo podr\u00eda explotarse cuando es cargado un modelo en Apache MXNet que presenta un nombre de operador especialmente dise\u00f1ado que causar\u00eda que la evaluaci\u00f3n de la expresi\u00f3n regular usara excesivos recursos para intentar una coincidencia. Este problema afecta a Apache MXNet versiones anteriores a 1.9.1"}], "id": "CVE-2022-24294", "lastModified": "2022-08-01T16:01:00.140", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-07-24T18:15:09.587", "references": [{"source": "security@apache.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2022/07/24/2"}, {"source": "security@apache.org", "tags": ["Mailing List", "Vendor Advisory"], "url": "https://lists.apache.org/thread/b1fbfmvzlr2bbp95lqoh3mtovclfcl3o"}], "sourceIdentifier": "security@apache.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-400"}], "source": "security@apache.org", "type": "Secondary"}]}