Sécurité et conformité
DEVO-2023-0007
Résumé
Devolutions Gateway is affected by a vulnerability.
Produits affectés
Devolutions Gateway 2023.1.1 and earlier.
Journal des modifications
Initial publication - 2023-03-22
Sévérité
Medium
Produit
Devolutions Gateway
Version corrigée
2023.1.2
Uncontrolled resource consumption in the logging feature of Devolutions Gateway
Description
Uncontrolled resource consumption in the logging feature in Devolutions Gateway 2023.1.1 and earlier allows an attacker to cause a denial of service by filling up the disk with specially crafted requests and render the system unusable.
Mesures correctives et solutions de contournement
Upgrade to Devolutions Gateway 2023.1.2 and higher.
Sévérité
Medium - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
Produits affectés
Devolutions Gateway 2023.1.1 and earlier.
CVE(s)
CVE-2023-1580