Apache.OpenMeetings.NetTest.Download.Upload.size.DoS

description-logoDescription

This indicates an attack attempt to exploit a Denial of Service Vulnerability in Apache Software Foundation OpenMeetings.
The vulnerability is due to a lack of limitations on download and upload sizes on the NetTest endpoint. A remote attacker could exploit this vulnerability by sending a large number of requests to the target system. Successful exploitation could result in the exhaustion of network resources, resulting in denial of service conditions.

affected-products-logoAffected Products

Apache Software Foundation OpenMeetings 4.0.0 - 5.1.0

Impact logoImpact

Denial of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
http://openmeetings.apache.org/security.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2021-04-08 18.054 Default_action:pass:drop
2021-03-31 18.049