Lucene search
INCIBECVE-2024-5052HistoryMay 17, 2024 - 10:15 a.m.
CVE-2024-5052
2024-05-1710:15:14
CWE-400
INCIBE
web.nvd.nist.gov
27
cerberus enterprise
denial of service
web administration
http requests
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
9.0%
Denial of Service (DoS) vulnerability for Cerberus Enterprise 8.0.10.3 web administration. The vulnerability exists when the web server, default port 10001, attempts to process a large number of incomplete HTTP requests.
Affected configurations
Node
cerberus_ftp_enterprisecerberus_ftp_enterpriseRange≤8.0.10.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cerberus_ftp_enterprise | cerberus_ftp_enterprise | * | cpe:2.3:a:cerberus_ftp_enterprise:cerberus_ftp_enterprise:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Cerberus FTP Enterprise",
"vendor": "Cerberus FTP Enterprise",
"versions": [
{
"status": "affected",
"version": "8.0.10.3"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2024-5052 Resource consumption vulnerability in Cerberus FTP Enterprise
2024-05-17 09:40:02
cvelist
cvelist
CVE-2024-5052 Resource consumption vulnerability in Cerberus FTP Enterprise
2024-05-17 09:40:02
nvd
nvd
CVE-2024-5052
2024-05-17 10:15:14
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2024-5052