CVE-2022-47556

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Sep 19, 2023

Updated: Aug 3, 2024

CWE ID 400

Summary

CVE-2022-47556 is a vulnerability affecting ekorRCI, a component of certain web servers. This issue allows a low-privileged attacker to send excessive legitimate web requests to a non-validated functionality, leading to uncontrolled resource consumption and a resulting Denial of Service (DoS) attack on the affected device. The attacker does not require elevated privileges to exploit this vulnerability, making it a potentially serious threat to organizations that utilize the affected software.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Ormazabal

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/suWGMV
https://www.cve.org/CVERecord?id=CVE-2022-47556
https://nvd.nist.gov/vuln/detail/CVE-2022-47556

Back to Vulnerability Database

CVE-2022-47556

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations