Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 9:18 a.m.7 views

CVE-2024-56200

Altair is a fork of Misskey v12. Affected versions lack of request validation and lack of authentication in the image proxy for compressing and resizing remote files could allow attacks that could affect availability, such as by abnormally increasing the CPU usage of the server on which this...

8.6CVSS7.1AI score0.00591EPSS
Exploits0References1
Circl
Circl
added 2024/12/19 6:44 p.m.5 views

CVE-2024-56200

creationtimestamp| type| source ---|---|--- 2024-12-19 18:44:21+00:00| seen| https://infosec.exchange/users/cve/statuses/113680964695610869 2024-12-19 19:15:47+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ldolhrnaxv2a 2024-12-19 20:40:32+00:00| seen|...

8.6CVSS4.8AI score0.00591EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/12/19 6:43 p.m.22 views

CVE-2024-56200 Uncontrolled Recursion and Asymmetric Resource Consumption in Altair media/file proxy

Altair is a fork of Misskey v12. Affected versions lack of request validation and lack of authentication in the image proxy for compressing and resizing remote files could allow attacks that could affect availability, such as by abnormally increasing the CPU usage of the server on which this...

8.6CVSS0.00591EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/12/19 6:43 p.m.6 views

CVE-2024-56200 Uncontrolled Recursion and Asymmetric Resource Consumption in Altair media/file proxy

Altair is a fork of Misskey v12. Affected versions lack of request validation and lack of authentication in the image proxy for compressing and resizing remote files could allow attacks that could affect availability, such as by abnormally increasing the CPU usage of the server on which this...

8.6CVSS7.2AI score0.00591EPSS
Exploits0References3
CVE
CVE
added 2024/12/19 6:43 p.m.51 views

CVE-2024-56200

CVE-2024-56200 affects Altair (fork of Misskey v12). Affected versions lack request validation and authentication in the image proxy used for compressing/resizing remote files, enabling attacks that can degrade availability by spiking CPU or network load. The issue is fixed in v12.24Q4.1; upgradi...

8.6CVSS8.7AI score0.00591EPSS
Exploits0References3
Rows per page
Query Builder