PT-2018-17616 · Icinga · Icinga

Crunsher

Publicado

2018-02-27

Atualizado

2018-03-23

CVE-2018-6532

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Icinga versions 2.x through 2.8.1

Description An issue allows an attacker to exhaust a lot of memory on the server side by sending specially crafted requests, triggering the OOM killer. This can be done through both authenticated and unauthenticated requests.

Recommendations For versions 2.x through 2.8.1, update to a version that contains a fix for this issue to prevent memory exhaustion attacks.

Correção

Resource Exhaustion

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-400

Identificadores relacionados

CVE-2018-6532

Produtos afetados

Icinga

PT-2018-17616 · Icinga · Icinga

CVE-2018-6532

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8