PT-2023-25662 · Opswat · Opswat Metadefender Kiosk
Published
2023-09-14
·
Updated
2023-09-19
·
CVE-2023-36659
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
OPSWAT MetaDefender KIOSK version 4.6.1.9996
Description
An issue was discovered in OPSWAT MetaDefender KIOSK where long inputs were not properly processed, allowing remote attackers to cause a denial of service, resulting in a loss of communication.
Recommendations
For OPSWAT MetaDefender KIOSK version 4.6.1.9996, consider restricting input lengths to prevent the denial of service issue until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Opswat Metadefender Kiosk