CVE-2018-5763

2018-02-1921:00:00

mitre

www.cve.org

AI Score

5.6

Confidence

High

EPSS

0.001

Percentile

43.0%

JSON

An issue was discovered in OXID eShop Enterprise Edition before 5.3.7 and 6.x before 6.0.1. By entering specially crafted URLs, an attacker is able to bring the shop server to a standstill and hence, it stops working. This is only valid if OXID High Performance Option is activated and Varnish is used.

References

oxidforge.org/en/security-bulletin-2018-001.html