Apache Answer Race Condition vulnerability
Low severity
GitHub Reviewed
Published
Jan 10, 2024
to the GitHub Advisory Database
•
Updated Jan 19, 2024
Description
Published by the National Vulnerability Database
Jan 10, 2024
Published to the GitHub Advisory Database
Jan 10, 2024
Reviewed
Jan 10, 2024
Last updated
Jan 19, 2024
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Apache Answer.
This issue affects Apache Answer: through 1.2.0.
Under normal circumstances, a user can only bookmark a question once, and will only increase the number of questions bookmarked once. However, repeat submissions through the script can increase the number of collection of the question many times.
Users are recommended to upgrade to version [1.2.1], which fixes the issue.
References