CVE-2022-47556
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Sep 19, 2023
Updated: Aug 3, 2024
CWE ID 400
Summary
CVE-2022-47556 is a vulnerability affecting ekorRCI, a component of certain web servers. This issue allows a low-privileged attacker to send excessive legitimate web requests to a non-validated functionality, leading to uncontrolled resource consumption and a resulting Denial of Service (DoS) attack on the affected device. The attacker does not require elevated privileges to exploit this vulnerability, making it a potentially serious threat to organizations that utilize the affected software.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Ormazabal