CVE-2023-54337

Name of the Vulnerable Software and Affected Versions Sysax Multi Server version 6.95

Description Sysax Multi Server version 6.95 contains a denial of service condition in the administrative password field. An attacker can overwrite the password field with 800 bytes of repeated characters, causing the application to crash and disrupting server functionality. The vulnerable field is the administrative password field.

Recommendations Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, limit the length of the administrative password field to prevent the input of 800 repeated characters.