Primary

Context

SoftCOM iKSORIS Internet Starter Module Client-Side Denial-of-Service Vulnerability

Vulnerability

A client-side denial-of-service vulnerability has been identified in the Internet Starter module of SoftCOM iKSORIS software, affecting all versions prior to 79.0. The issue arises when an attacker tricks a user into visiting a URL with a 'd' parameter set to an unhandled value. This manipulation causes the server to return an error message, blocking subsequent requests. The problem persists until the user's session expires or cookies are manually deleted. A similar denial-of-service effect can occur if a user selects an unimplemented language option on the platform.

Impact

Exploitation of this vulnerability leads to a client-side denial-of-service condition, where the user's requests are blocked by the server, causing disruption in normal user activity.

Remediation

Users can update to version 79.0 or later to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SoftCOM iKSORIS Internet Starter Module Client-Side Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating