CVE-2024-0348
First published: Tue Jan 09 2024(Updated: )
A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been classified as problematic. Affected is an unknown function of the component File Upload Handler. The manipulation leads to resource consumption. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-250116.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Engineers Online Portal | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-0348?
CVE-2024-0348 has been classified as problematic due to its potential for resource consumption.
How do I fix CVE-2024-0348?
To address CVE-2024-0348, ensure that file upload handlers are properly configured and implement rate limiting on resource-intensive operations.
What component is affected by CVE-2024-0348?
CVE-2024-0348 affects the File Upload Handler component of SourceCodester Engineers Online Portal 1.0.
Is CVE-2024-0348 exploitable remotely?
Yes, CVE-2024-0348 can be exploited remotely, allowing attackers to manipulate resource consumption.
Which software version is vulnerable to CVE-2024-0348?
Version 1.0 of the SourceCodester Engineers Online Portal is vulnerable to CVE-2024-0348.
- agent/type
- agent/first-publish-date
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/softwarecombine
- agent/event
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/last-modified-date
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/engineers online portal project
- canonical/engineers online portal
- version/engineers online portal/1.0