
We found results for “”
CVE-2024-53299
Good to know:


Date: January 23, 2025
The request handling in the core in Apache Wicket 7.0.0 on any platform allows an attacker to create a DOS via multiple requests to server resources. Users are recommended to upgrade to versions 9.19.0 or 10.3.0, which fixes this issue.
Severity Score
Related Resources (6)
Severity Score
Weakness Type (CWE)
Uncontrolled Resource Consumption
CWE-400Top Fix

Upgrade Version
Upgrade to version org.apache.wicket:wicket-core:10.3.0;org.apache.wicket:wicket-core:8.17.0;org.apache.wicket:wicket-core:9.19.0
CVSS v3.1
Base Score: |
|
---|---|
Attack Vector (AV): | NETWORK |
Attack Complexity (AC): | LOW |
Privileges Required (PR): | NONE |
User Interaction (UI): | NONE |
Scope (S): | UNCHANGED |
Confidentiality (C): | NONE |
Integrity (I): | NONE |
Availability (A): | HIGH |