First published: Fri Nov 17 2023(Updated: )
An issue was discovered in the captive portal in OpenNDS before version 10.1.3. It has multiple memory leaks due to not freeing up allocated memory. This may lead to a Denial-of-Service condition due to the consumption of all available memory.
|Affected Software||Affected Version||How to fix|
CVE-2023-41102 is a vulnerability found in the captive portal in OpenNDS before version 10.1.3 that may lead to a Denial-of-Service (DoS) condition due to memory leaks.
CVE-2023-41102 has a severity rating of 7.5 (High).
CVE-2023-41102 affects OpenNDS versions up to and excluding 10.1.3 by causing memory leaks that can consume all available memory, leading to a DoS condition.
To fix CVE-2023-41102, update OpenNDS to version 10.1.3 or newer, as this version addresses the memory leaks and prevents the DoS condition.
You can find more information about CVE-2023-41102 on the following references: [Reference 1](https://github.com/openNDS/openNDS/releases/tag/v10.1.3), [Reference 2](https://github.com/openNDS/openNDS/commit/31dbf4aa069c5bb39a7926d86036ce3b04312b51)