Skyport Daemon Causing Issues

CVE-2024-42481

7.5HIGH

Key Information

Vendor: Skyportlabs
Status: Skyportd
Vendor: CVE Published:; 12 August 2024

Summary

Skyport Daemon (skyportd) is the daemon for the Skyport Panel. By making thousands of folders & files (easy due to skyport's lack of rate limiting on createFolder. createFile), skyportd in a lot of cases will cause 100% CPU usage and an OOM, probably crashing the system. This is fixed in 0.2.2.

Affected Version(s)

skyportd = < 0.2.2

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
Aug 12, 2024
Vulnerability Reserved.
Aug 2, 2024

Collectors

NVD DatabaseMitre Database