CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
91.1%
Scrapland 1.0 and earlier allows remote attackers to cause a denial of service (server termination) by triggering an error, which is treated as a fatal error by the server, as demonstrated using (1) signed integers for size values, (2) an invalid model, (3) a “newpos” value that is less than or equal to a size value, or (4) partial packets.
Vendor | Product | Version | CPE |
---|---|---|---|
enlight_software | scrapland | 1.0 | cpe:2.3:a:enlight_software:scrapland:1.0:*:*:*:*:*:*:* |