Lucene search

INCIBECVELIST:CVE-2024-4599

HistoryMay 07, 2024 - 10:48 a.m.

CVE-2024-4599 Denial of service vulnerability in LAN Messenger

2024-05-0710:48:39

CWE-400

INCIBE

www.cve.org

cve-2024-4599

denial of service

lan messenger

udp protocol

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

9.2%

JSON

Remote denial of service vulnerability in LAN Messenger affecting version 3.4.0. This vulnerability allows an attacker to crash the LAN Messenger service by sending a long string directly and continuously over the UDP protocol.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "LAN Messenger",
    "vendor": "LAN Messenger",
    "versions": [
      {
        "status": "affected",
        "version": "3.4.0"
      }
    ]
  }
]

References

www.incibe.es/en/incibe-cert/notices/aviso/denial-service-vulnerability-lan-messenger

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

9.2%

JSON

Related for CVELIST:CVE-2024-4599