Rewterz Threat Alert – APT Group Gamaredon – Active IOCs
March 21, 2023Rewterz Threat Advisory – CVE-2023-28368 – TP-Link T2600G-28SQ Vulnerability
March 21, 2023Rewterz Threat Alert – APT Group Gamaredon – Active IOCs
March 21, 2023Rewterz Threat Advisory – CVE-2023-28368 – TP-Link T2600G-28SQ Vulnerability
March 21, 2023Severity
High
Analysis Summary
CVE-2023-26513
Apache Sling Resource Merger is vulnerable to a denial of service, caused by an excessive Iteration flaw. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service condition.
Impact
- Denial of Service
Indicators Of Compromise
CVE
- CVE-2023-26513
Affected Vendors
Apache
Affected Products
- Apache Sling Resource Merger 1.2.0
- Apache Sling Resource Merger 1.4.0
Remediation
Upgrade to the latest version of Apache Sling Resource Merger, available from the Apache Website.