CVE-2022-25508

FreeTAKTeam/FreeTakServer

on github

Published

March 11, 2022

Severity

CVSS v3:

7.5 HIGH

CVSS v2:

5 MEDIUM

Description

An access control issue in the component /ManageRoute/postRoute of FreeTAKServer v1.9.8 allows unauthenticated attackers to cause a Denial of Service (DoS) via an unusually large amount of created routes, or create unsafe or false routes for legitimate users.

References

https://github.com/FreeTAKTeam/FreeTakServer/issues/291

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:freetakserver-ui_project:freetakserver-ui:1.9.8:::::::*	n/a	n/a	1.9.8

External Links

NVD - CVE-2022-25508