Security & Compliance
DEVO-2023-0007
Zusammenfassung
Devolutions Gateway is affected by a vulnerability.
Betroffene Produkte
Devolutions Gateway 2023.1.1 and earlier.
Änderungsprotokoll
Initial publication - 2023-03-22
Schweregrad
Medium
Produkt
Devolutions Gateway
Behobene Version
2023.1.2
Uncontrolled resource consumption in the logging feature of Devolutions Gateway
Beschreibung
Uncontrolled resource consumption in the logging feature in Devolutions Gateway 2023.1.1 and earlier allows an attacker to cause a denial of service by filling up the disk with specially crafted requests and render the system unusable.
Behebungen und Workarounds
Upgrade to Devolutions Gateway 2023.1.2 and higher.
Schweregrad
Medium - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
Betroffene Produkte
Devolutions Gateway 2023.1.1 and earlier.
CVE(s)
CVE-2023-1580