Denial of Service Vulnerability in OXID eShop with High Performance Option and Varnish

Denial of Service Vulnerability in OXID eShop with High Performance Option and Varnish

CVE-2018-5763 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

An issue was discovered in OXID eShop Enterprise Edition before 5.3.7 and 6.x before 6.0.1. By entering specially crafted URLs, an attacker is able to bring the shop server to a standstill and hence, it stops working. This is only valid if OXID High Performance Option is activated and Varnish is used.

Learn more about our Cis Benchmark Audit For Server Software.