CVE-2022-33749
5.3
MEDIUM
CVSS 3.1
EPSS 0.30%
Description
XAPI open file limit DoS It is possible for an unauthenticated client on the network to cause XAPI to hit its file-descriptor limit. This causes XAPI to be unable to accept new requests for other (trusted) clients, and blocks XAPI from carrying out any tasks that require the opening of file descriptors.
How to fix CVE-2022-33749
To remediate CVE-2022-33749, upgrade the affected package to a fixed version below.
- Alpine/xen—upgrade to 4.15.4-r0 or later
Is CVE-2022-33749 being exploited?
Low — EPSS is 0.3%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 4.15.4-r0
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.3 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L |