Lucene search
K

7 matches found

NVD
NVD
added 2022/10/08 1:15 a.m.37 views

CVE-2022-39281

fatfreecrm is a an open source, Ruby on Rails customer relationship management platform CRM. In versions prior to 0.20.1 an authenticated user can perform a remote Denial of Service attack against Fat Free CRM via bucket access. The vulnerability has been patched in commit c85a254 and will be...

6.5CVSS0.01414EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/10/08 12:0 a.m.7 views

CVE-2022-39281 Remote Denial of Service via Tasks endpoint in fat_free_crm

fatfreecrm is a an open source, Ruby on Rails customer relationship management platform CRM. In versions prior to 0.20.1 an authenticated user can perform a remote Denial of Service attack against Fat Free CRM via bucket access. The vulnerability has been patched in commit c85a254 and will be...

6.5CVSS6.4AI score0.01414EPSS
Exploits0References3
CVE
CVE
added 2022/10/08 12:0 a.m.89 views

CVE-2022-39281

CVE-2022-39281 affects fat_free_crm before 0.20.1. An authenticated user can trigger a remote Denial of Service via the bucket access in the Tasks endpoint, caused by the Task model’s bucket_empty? logic. The issue has been fixed in commit c85a254 and will be released in 0.20.1; patching is recom...

6.5CVSS6.3AI score0.01414EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/10/08 12:0 a.m.41 views

CVE-2022-39281 Remote Denial of Service via Tasks endpoint in fat_free_crm

fatfreecrm is a an open source, Ruby on Rails customer relationship management platform CRM. In versions prior to 0.20.1 an authenticated user can perform a remote Denial of Service attack against Fat Free CRM via bucket access. The vulnerability has been patched in commit c85a254 and will be...

6.5CVSS6.6AI score0.01414EPSS
Exploits0References3
OSV
OSV
added 2022/10/07 9:19 p.m.15 views

GHSA-P75C-5X3H-CXCG Fat Free CRM vulnerable to Remote Denial of Service via Tasks endpoint

Impact An authenticated user can perform a remote Denial of Service attack against Fat Free CRM. This vulnerability has been assigned the CVE identifier: CVE-2022-39281 Affected versions: All Not affected: None Fixed versions: 0.20.1 All users running an affected release should either upgrade or...

6.5CVSS6.2AI score0.01414EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2022/10/07 9:19 p.m.30 views

Fat Free CRM vulnerable to Remote Denial of Service via Tasks endpoint

Impact An authenticated user can perform a remote Denial of Service attack against Fat Free CRM. This vulnerability has been assigned the CVE identifier: CVE-2022-39281 Affected versions: All Not affected: None Fixed versions: 0.20.1 All users running an affected release should either upgrade or...

6.5CVSS6.1AI score0.01414EPSS
Exploits0References6Affected Software1
RubySec
RubySec
added 2022/10/07 12:0 a.m.26 views

Fat Free CRM vulnerable to Remote Denial of Service via Tasks endpoint

Impact An authenticated user can perform a remote Denial of Service attack against Fat Free CRM. This vulnerability has been assigned the CVE identifier: CVE-2022-39281 Affected versions: All Not affected: None Fixed versions: 0.20.1 All users running an affected release should either upgrade or...

6.5CVSS5.2AI score0.01414EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder