Security Advisory

CVE-2024-6427

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-03 11:53:15

Last updated 2024-08-01 21:41:03

Assigner INCIBE

State PUBLISHED

Description

Uncontrolled Resource Consumption vulnerability in MESbook 20221021.03 version. An unauthenticated remote attacker can use the "message" parameter to inject a payload with dangerous JavaScript code, causing the application to loop requests on itself, which could lead to resource consumption and disable the application.

← Browse all CVEs View on cve.org ↗