CVE-2023-50570

MEDIUM

Seancfoley Ipaddress - Infinite Loop

Title source: rule

Description

An issue in the component IPAddressBitsDivision of IPAddress v5.1.0 leads to an infinite loop. This is disputed because an infinite loop occurs only for cases in which the developer supplies invalid arguments. The product is not intended to always halt for contrived inputs.

References (1)

[Exploit, Issue Tracking, Vendor Advisory] https://github.com/seancfoley/IPAddress/issues/118

Scores

CVSS v3 5.5

EPSS 0.0006

EPSS Percentile 19.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-835

Status published

Products (2)

com.github.seancfoley/ipaddress 0Maven

seancfoley/ipaddress 5.1.0

Published Dec 29, 2023

Tracked Since Feb 18, 2026