Valine 1.4.14 allows remote attackers to cause a denial of service (application outage) by supplying a ua (aka User-Agent) value that only specifies the product and version.
References
Link | Resource |
---|---|
https://github.com/xCss/Valine/issues/366 | Exploit Issue Tracking Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-06-16T14:12:05
Updated: 2021-06-16T14:12:05
Reserved: 2021-06-16T00:00:00
Link: CVE-2021-34801
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-06-16T15:15:08.533
Modified: 2022-05-03T16:04:40.443
Link: CVE-2021-34801
JSON object: View
Redhat Information
No data.
CWE