HIGH🇵🇱 Wersja polska

CVE-2022-1718

CVSS 7.5v3.1pub. 2022-09-29upd. 2024-11-21

The trudesk application allows large characters to insert in the input field "Full Name" on the signup field which can allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request in GitHub repository polonel/trudesk prior to 1.2.2. This can lead to Denial of service.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Trudesk Project Trudesk

    APP
    Trudesk Project
    < 1.2.2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2022-2128CRITICAL9.8ten sam produkt

Unrestricted Upload of File with Dangerous Type in GitHub repository polonel/trudesk prior to 1.2.4.

CVE-2022-2023CRITICAL9.8ten sam produkt

Incorrect Use of Privileged APIs in GitHub repository polonel/trudesk prior to 1.2.4.

CVE-2022-1775CRITICAL9.8ten sam produkt

Weak Password Requirements in GitHub repository polonel/trudesk prior to 1.2.2.

CVE-2022-1808HIGH8.8ten sam produkt

Execution with Unnecessary Privileges in GitHub repository polonel/trudesk prior to 1.2.3.

CVE-2022-1931HIGH8.1ten sam produkt

Incorrect Synchronization in GitHub repository polonel/trudesk prior to 1.2.3.