CVE-2023-50707 CRITICAL

CVE-2023-50707: Uncontrolled Resource Consumption in EFACEC BCU 500

Vendor Efacec
Product BCU 500
Weakness CWE-400
Published December 19, 2023
Last update August 2, 2024
View on NVD All CVEs

CVSS base score

9.6/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H

What the vulnerability does

01Description

Through the exploitation of active user sessions, an attacker could send custom requests to cause a denial-of-service condition on the device.

Key dates

02Disclosure timeline

December 19, 2023 CVE published
August 2, 2024 Record updated

Related vulnerabilities

04Related CVE

CVE-2026-25762 AdonisJS vulnerable to Denial of Service (DoS) via Unrestricted Memory Buffering in PartHandler during File Type Detection CVE-2026-34677 CAI Content Credentials | Uncontrolled Resource Consumption (CWE-400) CVE-2018-0048 Junos OS: Memory exhaustion denial of service vulnerability in Routing Protocols Daemon (RPD) with Juniper Extension Toolkit (JET) support. CVE-2020-8251 CVE-2024-32663 Suricata 's http2 parser contains an improper compressed header handling can lead to resource starvation