CVE-2015-10103

CVSS V2 None CVSS V3 None

Description

A vulnerability, which was classified as problematic, was found in InternalError503 Forget It up to 1.3. This affects an unknown part of the file js/settings.js. The manipulation of the argument setForgetTime with the input 0 leads to infinite loop. It is possible to launch the attack on the local host. Upgrading to version 1.4 is able to address this issue. The name of the patch is adf0c7fd59b9c935b4fd675c556265620124999c. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-226119.

Overview

CVE ID
CVE-2015-10103

Assigner
cna@vuldb.com

Vulnerability Status
Undergoing Analysis

Published Version
2023-04-17T19:15:07

Last Modified Date
2023-04-18T03:15:28

Weakness Enumerations

CWE	URL
CWE-835	http://cwe.mitre.org/data/definitions/835.html

References

Reference URL	Reference Tags
https://github.com/InternalError503/forget-it/commit/adf0c7fd59b9c935b4fd675c556265620124999c
https://github.com/InternalError503/forget-it/releases/tag/1.4
https://vuldb.com/?ctiid.226119
https://vuldb.com/?id.226119

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2015-10103
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-10103

History

Created	Old Value	New Value	Data Type	Notes
2023-04-17 20:00:50				Added to TrackCVE
2023-04-17 20:00:51			Weakness Enumeration	new
2023-04-18 04:00:32		2023-04-18T03:15:28	CVE Modified Date	updated
2023-04-18 04:00:32	Received	Awaiting Analysis	Vulnerability Status	updated
2023-04-18 04:00:35			CVSS V3 information	new
2023-04-18 04:00:35			CVSS V2 information	new
2023-04-24 11:00:56	Awaiting Analysis	Undergoing Analysis	Vulnerability Status	updated
2023-04-24 11:01:01			CVSS V3 information	new
2023-04-24 11:01:01			CVSS V2 information	new