CVE-2025-53634

Name of the Vulnerable Software and Affected Versions: Chall-Manager versions prior to 0.1.4

Description: Chall-Manager, a platform-agnostic system for starting Challenges on Demand, is susceptible to a Denial of Service (DoS) attack via a slow loris attack against its HTTP Gateway. The gateway lacks a timeout setting, allowing an attacker to exhaust system resources. Exploitation does not require authentication or authorization. It is recommended to deploy Chall-Manager deep within the infrastructure to limit external access.

Recommendations: Update to version 0.1.4 or later.