Lucene search
K

5 matches found

NVD
NVD
added 2024/02/13 1:15 a.m.12 views

CVE-2024-25407

SteVe v3.6.0 was discovered to use predictable transaction ID's when receiving a StartTransaction request. This vulnerability can allow attackers to cause a Denial of Service DoS by using the predicted transaction ID's to terminate other transactions...

7.5CVSS6.7AI score0.00562EPSS
Exploits0References1
Prion
Prion
added 2024/02/13 1:15 a.m.16 views

Cross site request forgery (csrf)

SteVe v3.6.0 was discovered to use predictable transaction ID's when receiving a StartTransaction request. This vulnerability can allow attackers to cause a Denial of Service DoS by using the predicted transaction ID's to terminate other transactions...

7.4AI score0.00562EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/13 12:0 a.m.13 views

CVE-2024-25407

SteVe v3.6.0 was discovered to use predictable transaction ID's when receiving a StartTransaction request. This vulnerability can allow attackers to cause a Denial of Service DoS by using the predicted transaction ID's to terminate other transactions...

6.9AI score0.00562EPSS
Exploits0References1
OSV
OSV
added 2024/02/13 12:0 a.m.9 views

CVE-2024-25407

SteVe v3.6.0 was discovered to use predictable transaction ID's when receiving a StartTransaction request. This vulnerability can allow attackers to cause a Denial of Service DoS by using the predicted transaction ID's to terminate other transactions...

7.5CVSS7AI score0.00562EPSS
Exploits0References3
CVE
CVE
added 2024/02/13 12:0 a.m.79 views

CVE-2024-25407

CVE-2024-25407 affects SteVe v3.6.0. The issue is that StartTransaction requests use predictable transaction IDs, enabling an attacker to terminate other transactions and cause a DoS. The CVE records consistently describe this vulnerability and note a PoC in one data source; no concrete remediati...

7.5CVSS7AI score0.00562EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder