CVE-2020-9000

An issue was discovered in iPortalis iCS 7.1.13.0. Attackers can send a sequence of requests to rapidly cause .NET Input Validation errors. This increases the size of the log file on the remote server until memory is exhausted, therefore consuming the maximum amount of resources (triggering a denial of service condition).
Configurations

Configuration 1 (hide)

cpe:2.3:a:iportalis:iportalis_control_portal:7.1.13.0:*:*:*:*:*:*:*

History

21 Nov 2024, 05:39

Type Values Removed Values Added
References () https://websec.nl/blog/ - Third Party Advisory () https://websec.nl/blog/ - Third Party Advisory
References () https://websec.nl/blog/6127847280e759c7d31286d0/cve%20report%20august%202021/ - Third Party Advisory () https://websec.nl/blog/6127847280e759c7d31286d0/cve%20report%20august%202021/ - Third Party Advisory

Information

Published : 2021-09-01 11:15

Updated : 2024-11-21 05:39


NVD link : CVE-2020-9000

Mitre link : CVE-2020-9000

CVE.ORG link : CVE-2020-9000


JSON object : View

Products Affected

iportalis

  • iportalis_control_portal
CWE
CWE-400

Uncontrolled Resource Consumption