First published: Wed Apr 28 2021(Updated: )
Etherpad < 1.8.3 is affected by a missing lock check which could cause a denial of service. Aggressively targeting random pad import endpoints with empty data would flatten all pads due to lack of rate limiting and missing ownership check.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Etherpad Etherpad | <1.8.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.