Primary

Context

INW Krbyyyzo Resource Consumption Vulnerability in Daily Huddle Site Component

Vulnerability

A resource consumption vulnerability has been identified in INW Krbyyyzo version 25.2002, specifically within the Daily Huddle Site component. The issue arises in the file '/gbo.aspx', where the manipulation of the argument 's' leads to excessive resource usage. This vulnerability can be exploited locally and requires authentication.

Impact

Exploitation of this vulnerability causes resource exhaustion, negatively impacting the application's availability.

Reproduction

The vulnerability can be reproduced by sending a request to the '/gbo.aspx' file within the Daily Huddle Site component, using an authenticated account. The argument 's' must be manipulated with a specific input that is currently unknown, which will lead to increased resource consumption.

Remediation

It is recommended to disable the Daily Huddle Site component to mitigate this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

INW Krbyyyzo Resource Consumption Vulnerability in Daily Huddle Site Component

Vulnerability

Impact

Reproduction

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating