Описание
MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to cause a denial of service (application crash) via an HTTP GET request for a file that does not exist, followed by two carriage returns, which causes a NULL dereference.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:mysql:maxdb:7.5.00.08:*:*:*:*:*:*:*
cpe:2.3:a:mysql:maxdb:7.5.00.11:*:*:*:*:*:*:*
cpe:2.3:a:mysql:maxdb:7.5.00.12:*:*:*:*:*:*:*
cpe:2.3:a:mysql:maxdb:7.5.00.14:*:*:*:*:*:*:*
cpe:2.3:a:mysql:maxdb:7.5.00.15:*:*:*:*:*:*:*
cpe:2.3:a:mysql:maxdb:7.5.00.16:*:*:*:*:*:*:*
cpe:2.3:a:mysql:maxdb:7.5.00.18:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00577
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
debian
почти 21 год назад
MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to cause ...
github
больше 3 лет назад
MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to cause a denial of service (application crash) via an HTTP GET request for a file that does not exist, followed by two carriage returns, which causes a NULL dereference.
EPSS
Процентиль: 68%
0.00577
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other