← back
CVE-2022-1698

Allowing long password leads to denial of service in causefx/organizr

CVSS 9.9 CRITICALEPSS 1.0%CWE-191
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 9.9EPSS 1.0%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
12 May 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Allowing long password leads to denial of service in GitHub repository causefx/organizr prior to 2.1.2000. This vulnerability can be abused by doing a DDoS attack for which genuine users will not able to access resources/applications.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:H
Affected products
causefx · causefx/organizr

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/causefx/organizr/commit/e4b4cff66c526f7b5bbaef0073c92c315c29bd56https://huntr.dev/bounties/f4ab747b-e89a-4514-9432-ac1ea56639f3