What the vulnerability does
01Description
An input validation flaw exists in ttembed. With a crafted input file, an attacker may be able to trigger a denial of service condition due to ttembed trusting attacker controlled values.
CVSS base score
7.5/10
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Key dates
02Disclosure timeline
August 2, 2018
CVE published
August 5, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2023-38690 matrix-appservice-irc IRC command injection via admin commands containing newlines
CVE-2014-2346 COPA-DATA zenon DNP3 Improper Input Validation
CVE-2018-4843
CVE-2026-32629 phpMyFAQ: Stored XSS via Unsanitized Email Field in Admin FAQ Editor
CVE-2023-31148 Improper Input Validation in Web Interface
