Lucene search
GitHub Advisory DatabaseGHSA-GRV6-M753-3W2GHistoryOct 07, 2022 - 6:16 p.m.
NocoDB vulnerable to Denial of Service
2022-10-0718:16:01
CWE-400
CWE-770
GitHub Advisory Database
github.com
11
nocodb
denial of service
http request
CVSS3
7.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:H
EPSS
0.001
Percentile
31.9%
NocoDB prior to 0.92.0 allows actors to insert large characters into the input field New Project on the create field, which can cause a Denial of Service (DoS) via a crafted HTTP request. Version 0.92.0 fixes this issue.
Affected configurations
Node
nocodbnocodbRange<0.92.0
Related
prion
prion
Design/Logic Flaw
2022-10-07 11:15:00
cvelist
cvelist
cnvd
cnvd
NocoDB Resource Management Error Vulnerability
2022-10-10 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-10-12 16:15:51
huntr
huntr
osv
osv
NocoDB vulnerable to Denial of Service
2022-10-07 18:16:01
CVE-2022-3423
2022-10-07 11:15:10
nvd
nvd
CVE-2022-3423
2022-10-07 11:15:10
cve
cve
CVE-2022-3423
2022-10-07 11:15:10
CVSS3
7.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:H
EPSS
0.001
Percentile
31.9%
Related for GHSA-GRV6-M753-3W2G