exploitDog

CVE-2019-17583

Опубликовано: 14 окт. 2019

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

idreamsoft iCMS 7.0.15 allows remote attackers to cause a denial of service (resource consumption) via a query for many comments, as demonstrated by the admincp.php?app=comment&perpage= substring followed by a large positive integer.

Ссылки

https://github.com/idreamsoft/iCMS/issues/83
Third Party Advisory
https://github.com/idreamsoft/iCMS/issues/83
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:idreamsoft:icms:7.0.15:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00807

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-770

Связанные уязвимости

GHSA-mgpr-w9rj-jmr9

github

больше 3 лет назад

idreamsoft iCMS 7.0.15 allows remote attackers to cause a denial of service (resource consumption) via a query for many comments, as demonstrated by the admincp.php?app=comment&perpage= substring followed by a large positive integer.

EPSS

Процентиль: 74%

0.00807

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-770