An attacker may cause a denial of service by crafting an Accept-Language header which ParseAcceptLanguage will take significant time to parse.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 16 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00043}

epss

{'score': 0.00044}


Thu, 15 May 2025 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 22 Nov 2024 12:00:00 +0000

Type Values Removed Values Added
References

Sun, 08 Sep 2024 18:45:00 +0000

Type Values Removed Values Added
First Time appeared Redhat acm
CPEs cpe:/a:redhat:acm:2.5::el8
cpe:/a:redhat:acm:2.6::el8
Vendors & Products Redhat acm

Mon, 19 Aug 2024 22:15:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:acm:2.5::el8
cpe:/a:redhat:acm:2.6::el8
Vendors & Products Redhat acm

cve-icon MITRE

Status: PUBLISHED

Assigner: Go

Published:

Updated: 2025-05-15T20:35:11.868Z

Reserved: 2022-05-31T00:00:00.000Z

Link: CVE-2022-32149

cve-icon Vulnrichment

Updated: 2024-08-03T07:32:56.022Z

cve-icon NVD

Status : Modified

Published: 2022-10-14T15:15:34.543

Modified: 2025-05-15T21:15:47.820

Link: CVE-2022-32149

cve-icon Redhat

Severity : Moderate

Publid Date: 2022-10-11T00:00:00Z

Links: CVE-2022-32149 - Bugzilla

cve-icon OpenCVE Enrichment

No data.