제출 #846761: HdrHistogram 2.2.2 and earlier Improper Input Validation정보

제목HdrHistogram 2.2.2 and earlier Improper Input Validation
설명The public method recordValueWithCount(long value, long count) in AbstractHistogram does not validate that the count parameter is positive. Passing negative values corrupts the histogram's internal state, including totalCount and individual bucket values. This allows an attacker who can influence the count parameter (e.g., through a metrics API or agent data receiver) to manipulate monitoring data, suppress SLA violations, or cause incorrect alerting decisions.
원천⚠️ https://github.com/HdrHistogram/HdrHistogram/issues/221
사용자
 sara11h (UID 98571)
제출2026. 06. 03. AM 09:50 (1 월 ago)
모더레이션2026. 07. 04. AM 06:40 (1 month later)
상태수락
VulDB 항목376281 [HdrHistogram 까지 2.2.2 AbstractHistogram AbstractHistogram.java recordValueWithCount 수 권한 상승]
포인트들20

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!