Vulners
Lucene search
ebankIT 6 Denial Of Service
| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
 | CVE-2023-30455 | 30 Jan 202523:28 | – | circl |
 | ebankIT 安全漏洞 | 28 Apr 202300:00 | – | cnnvd |
 | CVE-2023-30455 | 28 Apr 202300:00 | – | cve |
 | CVE-2023-30455 | 28 Apr 202300:00 | – | cvelist |
 | EUVD-2023-34872 | 3 Oct 202520:07 | – | euvd |
 | CVE-2023-30455 | 28 Apr 202318:15 | – | nvd |
 | Design/Logic Flaw | 28 Apr 202318:15 | – | prion |
 | PT-2023-22702 · Ebankit · Ebankit | 28 Apr 202300:00 | – | ptsecurity |
 | CVE-2023-30455 | 23 May 202502:45 | – | redhatcve |
 | CVE-2023-30455 | 28 Apr 202300:00 | – | vulnrichment |
10
`CVE-2023-30455
[Description]
An issue was discovered in ebankIT before version 7.
A Denial-of-Service attack is possible through the GET parameter
EStatementsIds located on the
/Controls/Generic/EBMK/Handlers/EStatements/DownloadEStatement.ashx endpoint.
The GET parameter accepts over 100 comma-separated e-statement IDs
without throwing an error. When this many IDs are supplied, the server
takes around 60 seconds to respond and successfully generate the
expected ZIP archive (during this time period, no other pages load). A
threat actor could issue a request to this endpoint with 100+ statement
IDs every 30 seconds, potentially resulting in an overload of the
server for all users.
------------------------------------------
[VulnerabilityType Other]
Denial of Service
------------------------------------------
[Vendor of Product]
ebankIT
------------------------------------------
[Affected Product Code Base]
ebankIT - Omnichannel Digital Banking Platform - Version 6, patched in version 7
------------------------------------------
[Affected Component]
The endpoint existing at /Controls/Generic/EBMK/Handlers/EStatements/DownloadEStatement.ashx?EStatementsIds=*id*,*id*,*id*,etc
------------------------------------------
[Attack Type]
Remote
------------------------------------------
[Impact Denial of Service]
true
------------------------------------------
[Attack Vectors]
I discovered it was possible to perform a Denial-of-Service attack on
the ebankIT platform, potentially resulting in a single user rendering
the entire application inaccessible. The vulnerable endpoint exists on
/Controls/Generic/EBMK/Handlers/EStatements/DownloadEStatement.ashx
and the EStatementsIds GET parameter accepts over 100
comma-separated e-statement IDs without throwing an error. When this
many IDs are supplied, the server takes around 60 seconds to respond
and successfully generate the expected zip file (during this 60
seconds, no other pages load). A threat actor could issue a request to
this endpoint with 100+ statement ID s every 30 seconds, potentially
resulting in overloading the server for all users of the ebankIT
platform. I believe this is being caused by a thread commitment issue
where there are no dedicated threads to individual processes.
------------------------------------------
[Discoverer]
Jake Murphy
`
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
28 Apr 2023 00:00Current
6.9Medium risk
Vulners AI Score6.9
EPSS0.00305