PT-2026-26949 · Unknown · Rarmaradio
Victor Mondragón
·
Publicado
2026-03-22
·
Atualizado
2026-03-22
·
CVE-2019-25583
CVSS v3.1
6.2
Média
| Vetor | AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
RarmaRadio version 2.72.3
Description
The software contains a denial of service issue in the
Username field. Local attackers can cause the application to crash by providing excessively long input. Specifically, an attacker can paste a 5000-byte buffer into the Username field through Settings > Network, leading to an application crash.Recommendations
Apply input validation to the
Username field to limit the maximum allowed input length.Exploit
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Rarmaradio