VWE-2020-5917 Printable Version

https://www.vaultwiki.org/pages/Book/Documentation/VWE-2020-5917
This page is a chapter in Info Known Vulnerabilities

This page has been seen 178,143 times.

- Created by
  pegasus
  on October 16, 2021

Common Name None
VWE-ID VWE-2020-5917
Related Report None
Severity MEDIUM
Exploit Difficulty Difficult
Platform Affects all platforms supported by the vulnerable versions.
Description Denial of Service. By creating large numbers of discussions for a conflicted page, a malicious user can ensure that the admin's conflict resolution tool cannot handle that page. Does not affect Lite versions.

Discovered August 11, 2020
Resolved August 12, 2020
Patches Available 4.1.0 RC 3 Patch Level 2
4.1.0 RC 2 Patch Level 3
4.1.0 RC 1 Patch Level 4
4.0.28 Patch Level 4
The versions listed below are known to be affected by this issue. If you are using one of those versions, you should update to a newer release that has no known vulnerabilities.

Common Name	None
VWE-ID	VWE-2020-5917
Related Report	None
Severity	MEDIUM
Exploit Difficulty	Difficult
Platform	Affects all platforms supported by the vulnerable versions.
Description	Denial of Service. By creating large numbers of discussions for a conflicted page, a malicious user can ensure that the admin's conflict resolution tool cannot handle that page. Does not affect Lite versions.
Discovered	August 11, 2020
Resolved	August 12, 2020
Patches Available	4.1.0 RC 3 Patch Level 2 4.1.0 RC 2 Patch Level 3 4.1.0 RC 1 Patch Level 4 4.0.28 Patch Level 4