PT-2024-15541 · Isharer+1 · Isharer+1

Fernando.Mengali

Published

2024-01-11

Updated

2024-05-17

CVE-2024-0418

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions iSharer and upRedSun File Sharing Wizard versions up to 1.5.0

Description A vulnerability has been found in the component GET Request Handler, which can be manipulated to lead to denial of service. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Recommendations For versions up to 1.5.0, consider disabling the GET Request Handler component until a patch is available to prevent potential denial of service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404

Related Identifiers

CVE-2024-0418

Affected Products

Isharer

Upredsun File Sharing Wizard

PT-2024-15541 · Isharer+1 · Isharer+1

CVE-2024-0418

Weakness Enumeration

Related Identifiers

Affected Products

References · 10