{"id":"CVE-2022-1543","summary":"Improper handling of Length parameter in erudika/scoold","details":"Improper handling of Length parameter in GitHub repository erudika/scoold prior to 1.49.4. When the text size is large enough the service results in a momentary outage in a production environment. That can lead to memory corruption on the server.","modified":"2026-04-10T04:42:48.362799Z","published":"2022-04-29T18:10:09Z","database_specific":{"cna_assigner":"@huntrdev","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/1xxx/CVE-2022-1543.json","cwe_ids":["CWE-130"]},"references":[{"type":"WEB","url":"https://huntr.dev/bounties/9889d435-3b9c-4e9d-93bc-5272e0723f9f"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/1xxx/CVE-2022-1543.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1543"},{"type":"FIX","url":"https://github.com/erudika/scoold/commit/62a0e92e1486ddc17676a7ead2c07ff653d167ce"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/erudika/scoold","events":[{"introduced":"0"},{"fixed":"54665edbafccc24566f5f9c1aefd223ee294987c"}]}],"versions":["1.24.1","1.24.10","1.24.11","1.24.2","1.24.3","1.24.4","1.24.5","1.24.6","1.24.7","1.24.8","1.24.9","1.25.0","1.25.1","1.25.2","1.25.3","1.25.4","1.25.5","1.26.0","1.26.1","1.28.0","1.28.1","1.28.10","1.28.2","1.28.3","1.28.4","1.28.5","1.28.6","1.28.7","1.28.8","1.28.9","1.29.0","1.29.1","1.29.2","1.29.3","1.29.4","1.30.0","1.30.1","1.30.2","1.30.3","1.30.4","1.30.5","1.31.0","1.31.1","1.31.2","1.31.3","1.31.4","1.32.0","1.32.1","1.33.0","1.33.1","1.34.0","1.35.0","1.35.1","1.35.2","1.35.3","1.36.0","1.36.1","1.36.2","1.37.0","1.37.1","1.38.0","1.39.0","1.39.1","1.39.2","1.39.3","1.39.4","1.40.0","1.40.1","1.40.2","1.40.3","1.40.4","1.40.5","1.41.0","1.41.1","1.41.2","1.42.1","1.43.0","1.43.1","1.43.2","1.43.3","1.44.0","1.45.0","1.46.0","1.46.1","1.46.2","1.46.3","1.48.0","1.48.1","1.48.2","1.49.0","1.49.1","1.49.2","1.49.3"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-1543.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:H"}]}