Improper input validation in AVSystem Unified Management Platform (UMP) 23.07.0.16567~LTS can result in unauthenticated CPE (Customer Premises Equipment) devices storing arbitrarily large amounts of data during registration. This can potentially lead to DDoS attacks on the application database and, ultimately, affect the entire product.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-03-18T00:00:00

Updated: 2024-08-02T15:29:07.410Z

Reserved: 2024-02-09T00:00:00

Link: CVE-2024-25656

cve-icon Vulnrichment

Updated: 2024-08-02T15:26:20.465Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-03-18T20:15:08.963

Modified: 2024-11-21T09:01:10.770

Link: CVE-2024-25656

cve-icon Redhat

No data.