CVE-2020-8123

Exploit

EPSS 0.63%
Veröffentlicht 04.02.2020 20:15:14
Zuletzt bearbeitet 21.11.2024 05:38:20
Quelle support@hackerone.com
CVE-Watchlists
Login
Unerledigt
Login

A denial of service exists in strapi v3.0.0-beta.18.3 and earlier that can be abused in the admin console using admin rights can lead to arbitrary restart of the application.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Strapi ≫ Strapi SwPlatformnode.js Version < 3.0.0

Strapi ≫ Strapi Version3.0.0 Updatealpha10.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha10.2 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha10.3 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha11 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha11.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha11.2 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha11.3 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha12 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha12.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha12.1.3 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha12.2 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha12.3 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha12.4 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha12.5 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha12.6 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha12.7 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha12.7.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha13 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha13.0.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha13.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha14 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha14.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha14.1.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha14.2 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha14.3 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha14.4.0 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha14.5 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha15 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha16 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha17 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha18 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha19 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha20 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha21 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha22 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha23 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha23.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha24 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha24.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha25 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha25.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha25.2 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha26 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha26.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha26.2 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha4 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha4.8 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha5.3 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha5.5 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha6.3 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha6.4 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha6.7 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha7.2 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha7.3 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha8 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha8.3 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha9 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha9.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatealpha9.2 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta0 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta10 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta11 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta12 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta13 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta14 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta15 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta16 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta16.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta16.2 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta16.3 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta16.4 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta16.5 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta16.6 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta16.7 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta16.8 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta17 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta17.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta17.2 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta17.3 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta17.4 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta17.5 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta17.6 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta17.7 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta17.8 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta18 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta18.1 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta18.2 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta18.3 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta2 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta3 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta4 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta5 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta6 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta7 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta8 SwPlatformnode.js

Strapi ≫ Strapi Version3.0.0 Updatebeta9 SwPlatformnode.js

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.63%	0.7

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.9	1.2	3.6	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	4	8	2.9	AV:N/AC:L/Au:S/C:N/I:N/A:P

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

https://hackerone.com/reports/768574

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2020-8123

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-8123

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-8123

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2020-8123