CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-12345: INW Krbyyyzo Daily Huddle Site gbo.aspx resource consumption

6.7 CVSS

Description

A vulnerability classified as problematic was found in INW Krbyyyzo 25.2002. Affected by this vulnerability is an unknown functionality of the file /gbo.aspx of the component Daily Huddle Site. The manipulation of the argument s leads to resource consumption. It is possible to launch the attack on the local host. Other endpoints might be affected as well. In INW Krbyyyzo 25.2002 wurde eine problematische Schwachstelle entdeckt. Hierbei betrifft es unbekannten Programmcode der Datei /gbo.aspx der Komponente Daily Huddle Site. Durch das Manipulieren des Arguments s mit unbekannten Daten kann eine resource consumption-Schwachstelle ausgenutzt werden. Der Angriff muss lokal angegangen werden.

Classification

CVE ID: CVE-2024-12345

CVSS Base Severity: MEDIUM

CVSS Base Score: 6.7

Affected Products

Vendor: INW

Product: Krbyyyzo

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.72% (scored less or equal to compared to others)

EPSS Date: 2025-02-25 (when was this score calculated)

References

https://vuldb.com/?id.293509
https://vuldb.com/?ctiid.293509

Timeline

2025-01-28 00:30:16 UTC
CVE

INW Krbyyyzo Daily Huddle Site gbo.aspx resource consumption