Primary

Context

Device Monitoring Studio Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in Device Monitoring Studio version 8.10.00.8925. This vulnerability allows local attackers to crash the application by sending an excessively long string to the server connection dialog. The crash can be triggered by entering a malformed server name or address with repeated characters through the 'Connect to New Server' interface in the Tools menu.

Impact

Exploitation of this vulnerability leads to a crash of the application, causing a denial-of-service condition.

Reproduction

To reproduce this vulnerability, first create a text file named 'code.txt' containing a long string of repeated characters. Then, open Device Monitoring Studio and navigate to 'Tools' > 'Connect to New Server'. Paste the contents of 'code.txt' into the server name or address field and click 'OK'. The application will crash upon doing so.

Added: Mar 30, 2026, 12:19 PM

Updated: Mar 30, 2026, 12:19 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

4.9

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

4.9

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Device Monitoring Studio Denial-of-Service Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating