2 matches found
CVE-2026-28342 OliveTin: Unauthenticated Denial of Service via Memory Exhaustion in PasswordHash API Endpoint
OliveTin gives access to predefined shell commands from a web interface. Prior to version 3000.10.2, the PasswordHash API endpoint allows unauthenticated users to trigger excessive memory allocation by sending concurrent password hashing requests. By issuing multiple parallel requests, an attacke...
CVE-2026-28342
creationtimestamp| type| source ---|---|--- 2026-03-01 23:34:09+00:00| published-proof-of-concept| https://github.com/OliveTin/OliveTin/security/advisories/GHSA-pc8g-78pf-4xrp...