CVE-2018-25087

EPSS 0.04%
Veröffentlicht 06.06.2023 03:15:08
Zuletzt bearbeitet 21.11.2024 04:03:31
Quelle cna@vuldb.com
CVE-Watchlists
Login
Unerledigt
Login

A vulnerability classified as problematic was found in Arborator Server. This vulnerability affects the function start of the file project.cgi. The manipulation of the argument project leads to denial of service. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The patch is identified as cdbdbcbd491db65e9d697ab4365605fdfab1a604. It is recommended to apply a patch to fix this issue. VDB-230662 is the identifier assigned to this vulnerability.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 1 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Arborator Server Project ≫ Arborator Server Version < 2018-10-20

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.13

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
cna@vuldb.com	3.5	2.1	1.4	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
cna@vuldb.com	2.7	5.1	2.9	AV:A/AC:L/Au:S/C:N/I:N/A:P

CWE-404 Improper Resource Shutdown or Release

The product does not release or incorrectly releases a resource before it is made available for re-use.

https://github.com/Arborator/arborator-server/commit/cdbdbcbd491db65e9d697ab4365605fdfab1a604

Patch

https://vuldb.com/?ctiid.230662

Third Party Advisory

Permissions Required

https://vuldb.com/?id.230662

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2018-25087

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2018-25087

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2018-25087

EUVD