CVE-2018-8015 is a vulnerability in Apache Orc
Published on May 18, 2018

In Apache ORC 1.0.0 to 1.4.3 a malformed ORC file can trigger an endlessly recursive function call in the C++ or Java parser. The impact of this bug is most likely denial-of-service against software that uses the ORC file parser. With the C++ parser, the stack overflow might possibly corrupt the stack.

NVD

Products Associated with CVE-2018-8015

Want to know whenever a new CVE is published for Apache Orc? stack.watch will email you.

Apache Orc

Affected Versions

Apache Software Foundation Apache ORC Version 1.0.0 to 1.4.3 is affected by CVE-2018-8015

Exploit Probability

EPSS

4.15%

Percentile

88.49%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-8015 is a vulnerability in Apache OrcPublished on May 18, 2018

Products Associated with CVE-2018-8015

Affected Versions

Exploit Probability

CVE-2018-8015 is a vulnerability in Apache Orc
Published on May 18, 2018