CVE-2024-10599

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Tongda OA 2017 up to 11.7

Description A problematic issue has been found in Tongda OA, affecting some unknown processing of the file /inc/package static resources.php. This leads to resource consumption and can be initiated remotely. The issue has been disclosed to the public.

Recommendations For Tongda OA 2017 up to 11.7, update to the latest version to mitigate risks. As a temporary workaround, consider restricting access to the file /inc/package static resources.php until a patch is available.

Exploit

Fix

Resource Exhaustion

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-770

Related Identifiers

CVE-2024-10599

Affected Products

Tongda Oa

CVE-2024-10599

Weakness Enumeration

Related Identifiers

Affected Products

References · 13