Advisory ID : LINA/ADE-2023-0001
CVSS 3.0 score 5.9 – medium.
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:F/RL:U/RC:C
Click link to see details : NVD – CVSS v3 Calculator (nist.gov)
Date reported : 2022-10-22
Correction available : 2022-11-12
Synopsis :
A vulnerability of type denial of service has been detected
Product :
LINA / ADE admin console
Version :
From 5.0 to 6.0 of Lina
Problem type :
CWE – CWE-730: OWASP Top Ten 2004 Category A9 – Denial of Service (4.10) (mitre.org)
Description :
This vulnerability, related to a buffer overflow in an undocumented Web API may lead to a denial of service (crash of the server) and using a well-crafted payload could lead to a remote code execution
Mitigations or workaround :
We strongly recommend upgrading Lina to 5.3.5 or higher which fixes this issue.
Articles / Posts
- Lina 6.1 Controlled Release is available on-demand
- PowerShell for Lina 6.0
- Advisory ID : LINA/ADE-2023-0002
- Advisory ID : LINA/ADE-2023-0001
- Time Navigator 4.6.9 Hyper-V Software Alert
- Tina 4.7.1 GA is available !
- Miria install error on a Linux server without X11
- HSS Replication requires attention when upgrading to 5.x
- LINA Agents 5.3.4
- Miria 3.15 GA is available
Categories
- Lina – EN (21)
- Miria – EN (8)
- Tina – EN (17)