Unlimited Resource Consumption Vulnerability in Golang Webinstaller

Unlimited Resource Consumption Vulnerability in Golang Webinstaller

CVE-2021-38465 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

The webinstaller is a Golang web server executable that enables the generation of an Auvesy image agent. Resource consumption can be achieved by generating large amounts of installations, which are then saved without limitation in the temp folder of the webinstaller executable.

Learn more about our Web App Pen Testing.