Improper input validation in AVSystem Unified Management Platform (UMP) 23.07.0.16567~LTS can result in unauthenticated CPE (Customer Premises Equipment) devices storing arbitrarily large amounts of data during registration. This can potentially lead to DDoS attacks on the application database and, ultimately, affect the entire product.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.cvcn.gov.it/cvcn/cve/CVE-2024-25656 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-03-18T00:00:00
Updated: 2024-08-02T15:29:07.410Z
Reserved: 2024-02-09T00:00:00
Link: CVE-2024-25656
Vulnrichment
Updated: 2024-08-02T15:26:20.465Z
NVD
Status : Awaiting Analysis
Published: 2024-03-18T20:15:08.963
Modified: 2024-11-21T09:01:10.770
Link: CVE-2024-25656
Redhat
No data.