An issue was discovered in iXsystems FreeNAS (and TrueNAS) 11.2 before 11.2-u8 and 11.3 before 11.3-U1. It allows a denial of service. The login authentication component has no limits on the length of an authentication message or the rate at which such messages are sent.
References
Link | Resource |
---|---|
https://jira.ixsystems.com/browse/NAS-104748 | Patch Third Party Advisory |
https://security.ixsystems.com/cves/2020-04-08-cve-2020-11650/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-04-08T22:12:46
Updated: 2020-04-10T11:25:52
Reserved: 2020-04-08T00:00:00
Link: CVE-2020-11650
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-04-08T23:15:12.683
Modified: 2021-07-21T11:39:23.747
Link: CVE-2020-11650
JSON object: View
Redhat Information
No data.
CWE