CVE-2024-12345

CVSS v2.0

4.3

Medium

Vector

AV:L/AC:L/Au:M/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions: INW Krbyyyzo version 25.2002

Description: A problematic issue was found in the Daily Huddle Site component, specifically in the file /gbo.aspx. The manipulation of the argument s leads to resource consumption. It is possible to launch the attack on the local host, and other endpoints might be affected as well.

Recommendations: INW Krbyyyzo version 25.2002: Update the Daily Huddle Site component to prevent resource consumption by manipulating the s argument in the /gbo.aspx file.

Fix

RCE

LPE

Improper Resource Release

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404CWE-400

Related Identifiers

CVE-2024-12345

Affected Products

Inw Krbyyyzo

CVE-2024-12345

Weakness Enumeration

Related Identifiers

Affected Products

References · 37