Uncontrolled Resource Consumption vulnerability in MESbook 20221021.03 version. An unauthenticated remote attacker can use the "message" parameter to inject a payload with dangerous JavaScript code, causing the application to loop requests on itself, which could lead to resource consumption and disable the application.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: INCIBE
Published: 2024-07-03T11:53:15.828Z
Updated: 2024-08-01T21:41:03.230Z
Reserved: 2024-07-01T09:36:53.436Z
Link: CVE-2024-6427
Vulnrichment
Updated: 2024-08-01T21:41:03.230Z
NVD
Status : Analyzed
Published: 2024-07-03T12:15:03.430
Modified: 2024-07-05T17:10:44.997
Link: CVE-2024-6427
Redhat
No data.