CVE-2024-47173

Published Oct 24, 2024

Last updated 23 days ago

CVSS medium 5.5

Overview

Description
Aimeos is an e-commerce framework. All SaaS and marketplace setups using the Aimeos GraphQL API admin interface version from 2024.04 up to 2024.07.1 are affected by a potential denial of service attack. Version 2024.07.2 fixes the issue.
Source
security-advisories@github.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
5.5
Impact score
4.2
Exploitability score
1.2
Vector string
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H
Severity
MEDIUM

Weaknesses

security-advisories@github.com
CWE-270

Social media

Hype score
Not currently trending

  1. CVE-2024-47173 Aimeos is an e-commerce framework. All SaaS and marketplace setups using the Aimeos GraphQL API admin interface version from 2024.04 up to 2024.07.1 are affected by a… https://t.co/JueJziX1VC

    @CVEnew

    24 Oct 2024

    264 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References