CVE-2023-54337

Sažetak

Sysax Multi Server 6.95 contains a denial of service vulnerability in the administrative password field that allows attackers to crash the application. Attackers can overwrite the password field with 800 bytes of repeated characters to trigger an application crash and disrupt server functionality.

Reference

https://www.exploit-db.com/exploits/51066
https://www.sysax.com/
https://www.vulncheck.com/advisories/sysax-multi-server-password-denial-of-service-poc
https://www.exploit-db.com/exploits/51066
https://www.vulncheck.com/advisories/sysax-multi-server-password-denial-of-service-poc

CVSS

Base:	9.1
Impact:	5.2
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	HIGH	HIGH

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Zadnje važnije ažuriranje

26-01-2026 - 16:15

Objavljeno

13-01-2026 - 23:16