216.73.217.64

CVE-2025-27419

· Published 03/03/2025 16:15 · Modified 07/03/2025 20:42

Labels: CVE-2025-27419 2025-03-03CVE-2025-27419CWE-770[email protected]

Essential information

Published
03/03/2025 16:15
Modified
07/03/2025 20:42
Author
Creator
CVSS
7.5 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS metrics

Description

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Denial of Service (DoS) vulnerability exists in WeGIA. This vulnerability allows any unauthenticated user to cause the server to become unresponsive by performing aggressive spidering. The vulnerability is caused by recursive crawling of dynamically generated URLs and insufficient handling of large volumes of requests. This vulnerability is fixed in 3.2.16.

NVD status

Status
Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
wegia / wegia cpe:2.3:a:wegia:wegia:*:*:*:*:*:*:*:*

References