nvd-json-data-feeds/CVE-2023/CVE-2023-383xx/CVE-2023-38313.json

{
  "id": "CVE-2023-38313",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2023-11-17T06:15:33.427",
  "lastModified": "2023-11-17T06:15:33.427",
  "vulnStatus": "Received",
  "descriptions": [
    {
      "lang": "en",
      "value": "An issue was discovered in OpenNDS Captive Portal before 10.1.2. it has a do_binauth NULL pointer dereference that can be triggered with a crafted GET HTTP request with a missing client redirect query string parameter. Triggering this issue results in crashing openNDS (a Denial-of-Service condition). The issue occurs when the client is about to be authenticated, and can be triggered only when the BinAuth option is set."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://github.com/openNDS/openNDS/releases/tag/v10.1.2",
      "source": "cve@mitre.org"
    }
  ]
}
Auto-Update: 2023-11-17T07:00:18.599899+00:00 2023-11-17 07:00:22 +00:00			`{`
			`"id": "CVE-2023-38313",`
			`"sourceIdentifier": "cve@mitre.org",`
			`"published": "2023-11-17T06:15:33.427",`
			`"lastModified": "2023-11-17T06:15:33.427",`
			`"vulnStatus": "Received",`
			`"descriptions": [`
			`{`
			`"lang": "en",`
			`"value": "An issue was discovered in OpenNDS Captive Portal before 10.1.2. it has a do_binauth NULL pointer dereference that can be triggered with a crafted GET HTTP request with a missing client redirect query string parameter. Triggering this issue results in crashing openNDS (a Denial-of-Service condition). The issue occurs when the client is about to be authenticated, and can be triggered only when the BinAuth option is set."`
			`}`
			`],`
			`"metrics": {},`
			`"references": [`
			`{`
			`"url": "https://github.com/openNDS/openNDS/releases/tag/v10.1.2",`
			`"source": "cve@mitre.org"`
			`}`
			`]`
			`}`