CVE-2022-1728

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-1728

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-1728.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-1728

Published

2022-05-16T14:55:13Z

Modified

2026-04-10T04:42:50.652233Z

Severity

7.6 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H CVSS Calculator

Summary

Allowing long password leads to denial of service in polonel/trudesk in polonel/trudesk

Details

Allowing long password leads to denial of service in polonel/trudesk in GitHub repository polonel/trudesk prior to 1.2.2. This vulnerability can be abused by doing a DDoS attack for which genuine users will not able to access resources/applications.

Database specific

{
    "cna_assigner": "@huntrdev",
    "cwe_ids": [
        "CWE-190"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/1xxx/CVE-2022-1728.json"
}

References

Affected packages

Git / github.com/polonel/trudesk

Affected ranges

Type: GIT
Repo: https://github.com/polonel/trudesk
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

7099d084920b6a616bc03077aa149b690620b4d6

Affected versions

0.*

0.1.10-rc

0.1.10-rc1

0.1.10-rc3

0.1.2

0.1.3

0.1.4

0.1.5

0.1.6

0.1.7

0.1.8

0.1.9

0.1.9.1

v1.*

v1.0.1

v1.0.13

v1.0.14

v1.0.15

v1.0.16

v1.0.17

v1.0.2

v1.0.3

v1.0.4

v1.0.6

v1.1.0

v1.1.1

v1.1.10

v1.1.11

v1.1.2

v1.1.3

v1.1.4

v1.1.5

v1.1.6

v1.1.7

v1.1.9

v1.2.0

v1.2.1

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-1728.json"