CVE-2024-10599

Summary

A vulnerability, which was classified as problematic, has been found in Tongda OA 2017 up to 11.7. This issue affects some unknown processing of the file /inc/package_static_resources.php. The manipulation leads to resource consumption. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Affected Software

VendorProductVersion RangeStatus
TongdaOA 201711.0affected
TongdaOA 201711.1affected
TongdaOA 201711.2affected
TongdaOA 201711.3affected
TongdaOA 201711.4affected
TongdaOA 201711.5affected
TongdaOA 201711.6affected
TongdaOA 201711.7affected

Weaknesses

  • CWE-400: Resource Consumption

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: partial

References