CVE-2018-7194 - CERT CVE

  1. CVE-2018-7194

ID CVE-2018-7194
Sažetak Integer format vulnerability in the ticket number generator in Enhancesoft osTicket before 1.10.2 allows remote attackers to cause a denial-of-service (preventing the creation of new tickets) via a large number of digits in the ticket number format setting.
Reference
CVSS
Base: 4.0
Impact: 2.9
Exploitability:8.0
Pristup
VektorSloženostAutentikacija
NETWORK LOW SINGLE
Impact
PovjerljivostCjelovitostDostupnost
NONE NONE PARTIAL
CVSS vektor AV:N/AC:L/Au:S/C:N/I:N/A:P
Zadnje važnije ažuriranje 17-04-2018 - 18:46
Objavljeno 27-03-2018 - 17:29