Описание
iDailyDiary 4.30 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the preferences tab name field. Attackers can paste a 2,000,000 character buffer into the default diary tab name to trigger an application crash.
EPSS
Процентиль: 11%
0.00037
Низкий
7.5 High
CVSS3
Дефекты
CWE-1284
Связанные уязвимости
CVSS3: 7.5
github
22 дня назад
iDailyDiary 4.30 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the preferences tab name field. Attackers can paste a 2,000,000 character buffer into the default diary tab name to trigger an application crash.
EPSS
Процентиль: 11%
0.00037
Низкий
7.5 High
CVSS3
Дефекты
CWE-1284