Türk Telekom

**Name of the Vulnerable Software and Affected Versions** Kron PAM versions prior to 3.7 **Description** Kron PAM is susceptible to a denial-of-service (DoS) attack due to unrestricted resource allocation. This allows an attacker to exhaust system resources via HTTP requests. **Recommendations** Update Kron PAM to version 3.7 or later.

**Name of the Vulnerable Software and Affected Versions** Kron PAM versions prior to 3.7 **Description** Kron PAM is susceptible to a Stored Cross-site Scripting (XSS) issue due to improper neutralization of input during web page generation. This allows for the injection of malicious scripts. **Recommendations** Update Kron PAM to version 3.7 or later.