CVE-2023-4138

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Aug 3, 2023
Updated: Aug 8, 2023
CWE ID 770

Summary

CVE-2023-4138 is a vulnerability affecting the GitHub repository ikus060/rdiffweb before version 2.8.0. The issue involves a lack of proper resource allocation or throttling, allowing an attacker to potentially consume excessive system resources through malicious requests. This can lead to denial-of-service (DoS) conditions, causing service disruptions and impacting the availability of the affected system. Users are strongly advised to update to the latest version of rdiffweb to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share