Primary

Context

TS3 Manager Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in TS3 Manager versions through 2.2.1. This vulnerability allows an unauthenticated user to crash the application by sending specially crafted Unicode input. The issue arises when Unicode tag characters are entered into the Server field on the login page. The application improperly processes these characters during the conversion to ASCII, leading to an unhandled exception that crashes the application within four to five seconds of submission.

Impact

Exploitation of this vulnerability causes the application to crash, disrupting service availability.

Reproduction

To reproduce this vulnerability, enter Unicode tag characters into the Server field of the login page. The application will crash within a few seconds after submission.

Remediation

Users are advised to upgrade to TS3 Manager version 2.2.2 or later.

Added: Oct 1, 2025, 11:17 PM

Updated: Oct 1, 2025, 11:17 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

7.7

relevance

0.6

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

7.7

relevance

0.6

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TS3 Manager Denial-of-Service Vulnerability

Vulnerability

Impact

Reproduction

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating