Описание
eyeOS uses predictable checksum values in the checknum parameter for access control, which allows remote attackers to register many accounts via doCreateUser actions, add many eyeBoard messages via addMsg actions, and cause a denial of service or conduct certain unauthorized activities, by guessing valid parameter values.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:eyeos_project:eyeos:*:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00584
Низкий
6.4 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
почти 4 года назад
eyeOS uses predictable checksum values in the checknum parameter for access control, which allows remote attackers to register many accounts via doCreateUser actions, add many eyeBoard messages via addMsg actions, and cause a denial of service or conduct certain unauthorized activities, by guessing valid parameter values.
EPSS
Процентиль: 68%
0.00584
Низкий
6.4 Medium
CVSS2
Дефекты
CWE-264