Frigate Denial-of-Service Vulnerability

A denial-of-service vulnerability has been identified in Frigate version 2.02. This issue allows attackers to crash the application by sending oversized input through the command line interface. By generating a payload of 8000 repeated characters and pasting it into the command line field, the application can be forced to crash.

Impact

Exploitation of this vulnerability leads to a crash of the Frigate application, causing a denial-of-service condition where the application becomes unresponsive or unavailable.

Reproduction

To reproduce this vulnerability, first run a Python script that creates a text file containing 8000 repeated characters. Copy the contents of this file to the clipboard. Then, open the Frigate application and activate the command line interface. Paste the clipboard contents into the command line field and press Enter. A dialog box will appear; click OK to acknowledge it. The application will then crash, demonstrating the denial-of-service condition.