NevaSec/CVE-2022-46485

Releases0

An issue in Data Illusion Survey Software Solutions NGSurvey v2.4.28 and below allows attackers to cause a Denial of Service (DoS) via a crafted survey.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-46485 ↗	Aug 2, 2023Wednesday, 2 August 2023, 14:15	7.5 HIGH	—
Data Illusion Survey Software Solutions ngSurvey version 2.4.28 and below is vulnerable to Denial of Service if a survey contains a "Text Field", "Comment Field" or "Contact Details".