Lucene search
K

4 matches found

NVD
NVD
added 2024/12/10 11:15 p.m.16 views

CVE-2024-55653

PwnDoc is a penetration test report generator. In versions up to and including 0.5.3, an authenticated user is able to crash the backend by raising a UnhandledPromiseRejection on audits which exits the backend. The user doesn't need to know the audit id, since a bad audit id will also raise the...

6.5CVSS0.00594EPSS
Exploits1References1
Circl
Circl
added 2024/12/10 10:57 p.m.10 views

CVE-2024-55653

creationtimestamp| type| source ---|---|--- 2024-12-10 22:57:12+00:00| seen| https://infosec.exchange/users/cve/statuses/113630998146893259 2024-12-11 01:01:35+00:00| seen| https://t.me/cvedetector/12612 2025-09-16 23:16:38+00:00| seen| MISP/be792712-f638-4d7d-b62d-4f5032e86764 2025-09-18...

6.5CVSS4.8AI score0.00594EPSS
Exploits1References2
CVE
CVE
added 2024/12/10 10:56 p.m.80 views

CVE-2024-55653

CVE-2024-55653 affects the PwnDoc open-source tool, with versions up to and including 0.5.3. The root issue is an authentication-bypassable path that can raise an UnhandledPromiseRejection on audits, causing the backend to crash. This makes the entire application unresponsive and unusable for all...

6.5CVSS6.8AI score0.00594EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/12/10 10:56 p.m.10 views

CVE-2024-55653 pwndoc's UnhandledPromiseRejection on audits causes Denial of Service (DoS)

PwnDoc is a penetration test report generator. In versions up to and including 0.5.3, an authenticated user is able to crash the backend by raising a UnhandledPromiseRejection on audits which exits the backend. The user doesn't need to know the audit id, since a bad audit id will also raise the...

6.5CVSS6.5AI score0.00594EPSS
Exploits1References3
Rows per page
Query Builder