xerial

Security Risk Profile

/100

medium

Security Risk Score

Comprehensive risk assessment based on 4 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from June 15, 2023 to present

Total CVEs

Critical+High

Exploited

Unpatched

Threat Assessment

Avg CVSS

7.5

Base severity

Avg EPSS

Exploit probability

Unpatched

Critical/High

Risk Level

45/100

medium

Severity Distribution

Critical

High

Medium

Low

Exploit Likelihood

>50% chance

20-50%

5-20%

<5%

Age Distribution

Common Weaknesses (CWE)

Integer Overflow

Most Affected Products

1. maven/org.xerial.snappy:snappy-java4

2. xerial snappy-java4

3. redhat/snappy-java4

4. IBM QRadar SIEM3

5. IBM IBM® Engineering Requirements Management DOORS1

Recent Vulnerabilities

See more →

CVE-2023-43642

CVSS 7.5high

Missing upper bound check on chunk length in snappy-java

9/25/2023

CVE-2023-34455

CVSS 7.5high

snappy-java's unchecked chunk length leads to DoS

6/15/2023

CVE-2023-34454

CVSS 7.5high

snappy-java's Integer Overflow vulnerability in compress leads to DoS

6/15/2023

CVE-2023-34453

CVSS 7.5high

snappy-java's Integer Overflow vulnerability in shuffle leads to DoS

6/15/2023

Monitor xerial in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free Trial Book a Demo

xerial

Security Risk Score

Threat Assessment

Severity Distribution

Exploit Likelihood

Age Distribution

Common Weaknesses (CWE)

Most Affected Products

Recent Vulnerabilities

Monitor xerial in Real-Time

Monitor Your Software Stack in Real-Time