Denial of Service Vulnerability in InterNiche NicheStack Web Server

Denial of Service Vulnerability in InterNiche NicheStack Web Server

CVE-2021-27565 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

The web server in InterNiche NicheStack through 4.0.1 allows remote attackers to cause a denial of service (infinite loop and networking outage) via an unexpected valid HTTP request such as OPTIONS. This occurs because the HTTP request handler enters a miscoded wbs_loop() debugger hook.

Learn more about our Web App Pen Testing.