Описание
Fluxbb 1.5.11 is affected by a denial of service (DoS) vulnerability by sending an extremely long password via the user login form. When a long password is sent, the password hashing process will result in CPU and memory exhaustion on the server.
Ссылки
- Product
- Product
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:fluxbb:fluxbb:1.5.11:*:*:*:*:*:*:*
EPSS
Процентиль: 34%
0.00138
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-916
Связанные уязвимости
github
больше 3 лет назад
Fluxbb 1.5.11 is affected by a denial of service (DoS) vulnerability by sending an extremely long password via the user login form. When a long password is sent, the password hashing process will result in CPU and memory exhaustion on the server.
EPSS
Процентиль: 34%
0.00138
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-916