Home

Description

nGrinder before 3.5.9 allows to set delay without limitation, which could be the cause of Denial of Service by remote attacker.

PUBLISHED Reserved 2024-03-07 | Published 2024-03-07 | Updated 2024-11-08 | Assigner naver

Problem types

CWE-405 Asymmetric Resource Consumption (Amplification)

Product status

Default status
affected

3.5.9
unaffected

Credits

Peter Stöckli of GitHub Security Lab

References

cve.naver.com/detail/cve-2024-28214.html (NAVER Security Advisory)

cve.org (CVE-2024-28214)

nvd.nist.gov (CVE-2024-28214)

Download JSON