CVE-2024-42481
Complete crash of host system due to calculateDirectorySize in skyportd
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.5EPSS 0.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
12 Aug 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Skyport Daemon (skyportd) is the daemon for the Skyport Panel. By making thousands of folders & files (easy due to skyport's lack of rate limiting on createFolder. createFile), skyportd in a lot of cases will cause 100% CPU usage and an OOM, probably crashing the system. This is fixed in 0.2.2.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected products
skyportlabs · skyportd