Lucene search
K

7 matches found

NVD
NVD
added 2022/10/08 1:15 a.m.37 views

CVE-2022-39281

fatfreecrm is a an open source, Ruby on Rails customer relationship management platform CRM. In versions prior to 0.20.1 an authenticated user can perform a remote Denial of Service attack against Fat Free CRM via bucket access. The vulnerability has been patched in commit c85a254 and will be...

6.5CVSS0.01414EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/10/08 12:0 a.m.7 views

CVE-2022-39281 Remote Denial of Service via Tasks endpoint in fat_free_crm

fatfreecrm is a an open source, Ruby on Rails customer relationship management platform CRM. In versions prior to 0.20.1 an authenticated user can perform a remote Denial of Service attack against Fat Free CRM via bucket access. The vulnerability has been patched in commit c85a254 and will be...

6.5CVSS6.4AI score0.01414EPSS
Exploits0References3
CVE
CVE
added 2022/10/08 12:0 a.m.90 views

CVE-2022-39281

CVE-2022-39281 affects fat_free_crm before 0.20.1. An authenticated user can trigger a remote Denial of Service via the bucket access in the Tasks endpoint, caused by the Task model’s bucket_empty? logic. The issue has been fixed in commit c85a254 and will be released in 0.20.1; patching is recom...

6.5CVSS6.3AI score0.01414EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/10/08 12:0 a.m.41 views

CVE-2022-39281 Remote Denial of Service via Tasks endpoint in fat_free_crm

fatfreecrm is a an open source, Ruby on Rails customer relationship management platform CRM. In versions prior to 0.20.1 an authenticated user can perform a remote Denial of Service attack against Fat Free CRM via bucket access. The vulnerability has been patched in commit c85a254 and will be...

6.5CVSS6.6AI score0.01414EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2022/10/07 9:19 p.m.30 views

Fat Free CRM vulnerable to Remote Denial of Service via Tasks endpoint

Impact An authenticated user can perform a remote Denial of Service attack against Fat Free CRM. This vulnerability has been assigned the CVE identifier: CVE-2022-39281 Affected versions: All Not affected: None Fixed versions: 0.20.1 All users running an affected release should either upgrade or...

6.5CVSS6.1AI score0.01414EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2022/10/07 9:19 p.m.15 views

GHSA-P75C-5X3H-CXCG Fat Free CRM vulnerable to Remote Denial of Service via Tasks endpoint

Impact An authenticated user can perform a remote Denial of Service attack against Fat Free CRM. This vulnerability has been assigned the CVE identifier: CVE-2022-39281 Affected versions: All Not affected: None Fixed versions: 0.20.1 All users running an affected release should either upgrade or...

6.5CVSS6.2AI score0.01414EPSS
Exploits0References6
RubySec
RubySec
added 2022/10/07 12:0 a.m.26 views

Fat Free CRM vulnerable to Remote Denial of Service via Tasks endpoint

Impact An authenticated user can perform a remote Denial of Service attack against Fat Free CRM. This vulnerability has been assigned the CVE identifier: CVE-2022-39281 Affected versions: All Not affected: None Fixed versions: 0.20.1 All users running an affected release should either upgrade or...

6.5CVSS5.2AI score0.01414EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder