← volver
CVE-2023-54337

Sysax Multi Server 6.95 - 'Password' Denial of Service (PoC)

CVSS 5.1 MEDIUMEPSS 0.5%CWE-1284
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 5.1EPSS 0.5%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
13 ene 2026Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Sysax Multi Server 6.95 contains a denial of service vulnerability in the administrative password field that allows attackers to crash the application. Attackers can overwrite the password field with 800 bytes of repeated characters to trigger an application crash and disrupt server functionality.
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Productos afectados
Sysax · Sysax Multi Server

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.exploit-db.com/exploits/51066https://www.sysax.com/https://www.vulncheck.com/advisories/sysax-multi-server-password-denial-of-service-poc