CVE-2020-37164

Medium CVSS: 6.7

AbsoluteTelnet 11.12 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an oversized license name. Attackers can generate a 2500-character payload and paste it into the license entry field to trigger an application crash.

Vendor

Celestialsoftware

Product

Absolutetelnet

CWE

CWE-120

Yayın Tarihi

2026-02-07 00:15:56

Güncelleme

2026-02-19 19:24:08

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-120 Absolutetelnet MEDIUM Celestialsoftware 2026

Referanslar

https://www.celestialsoftware.net/ https://www.exploit-db.com/exploits/48005 https://www.vulncheck.com/advisories/absolutetelnet-license-entry-denial-of-service

Benzer Kayıtlar

Medium

CVE-2020-37166

AbsoluteTelnet 11.12 contains a denial of service vulnerability in the SSH2 username input field that allows local attac…

Medium

CVE-2020-37165

AbsoluteTelnet 11.12 contains a denial of service vulnerability that allows local attackers to crash the application by…

Medium

CVE-2021-47764

AbsoluteTelnet 11.24 contains a denial of service vulnerability that allows local attackers to crash the application by…

Medium

CVE-2021-47765

AbsoluteTelnet 11.24 contains a denial of service vulnerability that allows local attackers to crash the application by…