Primary

Context

Ascertia SigningHub Denial-of-Service Vulnerability in Upload Document API

Vulnerability

A denial-of-service vulnerability has been identified in Ascertia SigningHub version 8.6.8 and prior. The issue arises in the Upload Document API component, where a lack of rate limiting allows attackers to upload an excessive number of files. This unrestricted file upload capability can lead to resource exhaustion, such as depleting disk space, increasing server load, or degrading overall performance.

Impact

Exploitation of this vulnerability can cause significant resource exhaustion on the server, leading to degraded performance, increased load, and potential disk space depletion.

Remediation

It is recommended to implement rate limiting for the Upload Document API to prevent excessive file uploads. Users can update to SigningHub versions after 8.6.8, where this vulnerability has been addressed.

Added: Oct 20, 2025, 1:18 PM

Updated: Oct 20, 2025, 4:40 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Ascertia SigningHub Denial-of-Service Vulnerability in Upload Document API

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating