How severe is CVE-2024-49705?

This vulnerability has a severity rating of MEDIUM with a CVSS score of N/A out of 10.

What type of vulnerability is CVE-2024-49705?

This is classified as CWE-248, which is a common weakness in software security.

CVE-2024-49705 - MEDIUM Severity | CVSS N/A

Vulnerability Description

Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to client-side Denial of Servise (DoS) attacks. An attacker might trick a user into using an URL with a d parameter set to an unhandled value. All the subsequent requests will not be accepted as the server returns an error message. Since this parameter is sent as part of a session cookie, the issue persists until the session expires or the user deletes cookies manually. Similar effect might be achieved when a user tries to change platform language to an unimplemented one. This vulnerability has been patched in version 79.0

Related Vulnerabilities

CVE-2018-11466

CRITICAL

CVSS:9.8(Critical)

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions <...

CWE-2482018

CVE-2023-0790

HIGH

CVSS:8.8(High)

Uncaught Exception in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

CWE-2482023

CVE-2023-20086

HIGH

CVSS:8.6(High)

A vulnerability in ICMPv6 processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a de...

CWE-2482023

CVE-2024-43357

HIGH

CVSS:8.6(High)

ECMA-262 is the language specification for the scripting language ECMAScript. A problem in the ECMAScript (JavaScript) specification of async generators, introduced by a May 2021 spec refactor, may le...

CWE-2482024

CVE-2023-23774

HIGH

CVSS:8.4(High)

Motorola EBTS/MBTS Site Controller drops to debug prompt on unhandled exception. The Motorola MBTS Site Controller exposes a debug prompt on the device's serial port in case of an unhandled exception....

CWE-2482023

CVE-2020-10292

HIGH

CVSS:8.2(High)

Visual Components (owned by KUKA) is a robotic simulator that allows simulating factories and robots in order toimprove planning and decision-making processes. Visual Components software requires a sp...

CWE-2482020