CVE-2019-18214

CVSS 7.7 HIGHEPSS 1.4%

The Video_Converter app 0.1.0 for Nextcloud allows denial of service (CPU and memory consumption) via multiple concurrent conversions because many FFmpeg processes may be running at once. (The workload is not queued for serial execution.)

CVSS:3.0/AC:L/AV:N/A:H/C:N/I:N/PR:L/S:C/UI:N

Produtos afetados

n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/PaulLereverend/NextcloudVideo_Converter/issues/22