Cloudburst Network Vulnerability Affects Publicly Accessible Software
CVE-2024-30249

8.6HIGH

Key Information:

Vendor: Cloudburstmc
Status: Network
Vendor: CVE Published:; 4 April 2024

🔔 Create Cloudburstmc Vulnerability Alert

What is CVE-2024-30249?

A vulnerability exists in the Cloudburst Network components, affecting earlier versions than 1.0.0.CR1-20240330.101522-15. This flaw enables attackers to exploit the network as an amplification tool, capable of launching denial of service attacks against third-party services. As a result, the availability of affected systems could be compromised, potentially leading to significant disruptions. Users are urged to update to the latest version to mitigate the risks associated with this vulnerability. Current versions provide necessary remediation, while no alternative workarounds exist.

Affected Version(s)

Network < 1.0.0.CR1-20240330.101522-15

References

https://github.com/CloudburstMC/Network/security/advisori...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 4, 2024

CVE-2024-30249 Data

JSON