Org.xerial.snappy:snappy-java
This hub aggregates every CVE we track for Org.xerial.snappy:snappy-java, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
0
Critical
2
High
0
In CISA KEV
Severity distribution
HIGH2MEDIUM2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 4 most recently published vulnerabilities affecting Org.xerial.snappy:snappy-java.
- CVE-2023-43642Missing upper bound check on chunk length in snappy-java 7.5
- CVE-2023-34455snappy-java's unchecked chunk length leads to DoS7.5
- CVE-2023-34454snappy-java's Integer Overflow vulnerability in compress leads to DoS5.9
- CVE-2023-34453snappy-java's Integer Overflow vulnerability in shuffle leads to DoS5.9
Product normalization is registry-driven with AI assist and human review. How it works