Lasse Wolter

Name of the Vulnerable Software and Affected Versions: Luca versions 1.1.14 and earlier Description: The issue allows remote attackers to cause a denial of service by inserting many fake records related to COVID-19. This is because Phone Number data lacks a digital signature. Recommendations: For versions 1.1.14 and earlier, consider implementing digital signatures for Phone Number data to prevent the insertion of fake records. As a temporary workaround, restrict access to the server to minimize the risk of exploitation.