Impact
The vulnerability resides in the attachment handling component of Feuerhamster MailForm version 1.1.0, where a crafted request can trigger a denial of service by consuming system resources. The weakness is a classic uncontrolled resource consumption flaw, mapped to CWE‑400.
Affected Systems
Any deployment running Feuerhamster MailForm 1.1.0 is susceptible. No further vendor or version details are provided.
Risk and Exploitability
The CVSS score of 7.5 indicates a high severity risk, while the EPSS score of less than 1% suggests the likelihood of exploitation is currently low. The vulnerability is not listed in the CISA KEV catalog, implying no known large‑scale exploitation. Attackers can likely invoke the flaw by sending a specially crafted HTTP request to the mail form endpoint, potentially from any network location with access to the service.
OpenCVE Enrichment