CVE-2022-43686

Published: Nov 14, 2022
Updated: Aug 9, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-43686" target="_blank" rel="noopener"> CVE-2022-43686
GHSA: <a href="https://github.com/advisories/GHSA-3cxx-3f53-m92c" target="_blank" rel="noopener"> GHSA-3cxx-3f53-m92c
Severity: Medium
Exploit:

In Concrete CMS (formerly concrete5) below 8.5.10 and between 9.0.0 and 9.1.2, the authTypeConcreteCookieMap table can be filled up causing a denial of service (high load).

CVSS v3:

CWEs:

Vulnerability Database