Every CVE whose affected-product data names Xerial Snappy-java, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-34455 — CVSS 7.5 (high): snappy-java is a fast compressor/decompressor for Java. Due to use of an unchecked chunk length, an unrecoverable fatal error can occur in…
CVE-2023-43642 — CVSS 7.5 (high): snappy-java is a Java port of the snappy, a fast C++ compresser/decompresser developed by Google. The SnappyInputStream was found to be…
CVE-2023-34453 — CVSS 5.9 (medium): snappy-java is a fast compressor/decompressor for Java. Due to unchecked multiplications, an integer overflow may occur in versions prior…
CVE-2023-34454 — CVSS 5.9 (medium): snappy-java is a fast compressor/decompressor for Java. Due to unchecked multiplications, an integer overflow may occur in versions prior…