CVE-2021-36802

Summary

Akaunting version 2.1.12 and earlier suffers from a denial-of-service issue that is triggered by setting a malformed 'locale' variable and sending it in an otherwise normal HTTP POST request. This issue was fixed in version 2.1.13 of the product.

Affected Software

VendorProductVersion RangeStatus
AkauntingAkaunting2.1.12 <= 2.1.12affected

Weaknesses

  • CWE-248: CWE-248: Uncaught Exception Denial of Service

ADP Enrichment

CVE Program Container

Additional References

References