Filtered by vendor Mesbook
Subscriptions
Filtered by product Mesbook
Subscriptions
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2024-6427 | 1 Mesbook | 1 Mesbook | 2024-11-21 | 7.5 High |
Uncontrolled Resource Consumption vulnerability in MESbook 20221021.03 version. An unauthenticated remote attacker can use the "message" parameter to inject a payload with dangerous JavaScript code, causing the application to loop requests on itself, which could lead to resource consumption and disable the application. | ||||
CVE-2024-6426 | 1 Mesbook | 1 Mesbook | 2024-11-21 | 8.1 High |
Information exposure vulnerability in MESbook 20221021.03 version, the exploitation of which could allow a local attacker, with user privileges, to access different resources by changing the API value of the application. |
Page 1 of 1.