CVE-2024-10344 | THREATINT

Description

In Helix Core versions prior to 2024.2, an unauthenticated remote Denial of Service (DoS) via the refuse function was identified. Reported by Karol Więsek.

PUBLISHED Reserved 2024-10-24 | Published 2024-11-11 | Updated 2025-01-29 | Assigner Perforce

HIGH: 8.7CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-400 Uncontrolled Resource Consumption

Product status

Default status

unaffected

0.0.0 before 2024.2

affected

0.0.0 before 2024.1

affected

0.0.0 before 2023.2

affected

0.0.0 before 2023.1

affected

0.0.0 before 2022.2

affected

References

portal.perforce.com/s/detail/a91PA000001SZOrYAO

cve.org (CVE-2024-10344)

nvd.nist.gov (CVE-2024-10344)

Download JSON