CVE-2023-38314

Name of the Vulnerable Software and Affected Versions OpenNDS Captive Portal versions prior to 10.1.2 OpenNDS Captive Portal version 10.1.2 is not affected as the issue is fixed in version 10.1.3.

Description An issue was discovered in OpenNDS Captive Portal that has a NULL pointer dereference in the preauthenticated() function. This can be triggered with a crafted GET HTTP request with a missing redirect query string parameter. Triggering this issue results in crashing OpenNDS, leading to a Denial-of-Service condition.

Recommendations For OpenNDS Captive Portal versions prior to 10.1.2, update to version 10.1.3 to resolve the issue. As a temporary workaround, consider restricting access to the preauthenticated() function until a patch is available. Avoid using the redirect query string parameter in the affected API endpoint until the issue is resolved.