Allowing long password leads to denial of service in polonel/trudesk in GitHub repository polonel/trudesk prior to 1.2.2. This vulnerability can be abused by doing a DDoS attack for which genuine users will not able to access resources/applications.
References
Link | Resource |
---|---|
https://github.com/polonel/trudesk/commit/e836d04d16787c2c9c72e7bf011cf396d1f73c19 | Patch Third Party Advisory |
https://huntr.dev/bounties/3c6cb129-6995-4722-81b5-af052572b519 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2022-05-16T14:55:13
Updated: 2022-05-16T14:55:13
Reserved: 2022-05-16T00:00:00
Link: CVE-2022-1728
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-05-16T15:15:10.423
Modified: 2022-05-25T02:45:32.193
Link: CVE-2022-1728
JSON object: View
Redhat Information
No data.
CWE