cvedb.io
CVE-2024-0241
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2024-01-04T21:15:09.267 · Last modified 2026-07-14T23:17:13.130

Summary

encoded_id-rails versions before 1.0.0.beta2 are affected by an uncontrolled resource consumption vulnerability. A remote and unauthenticated attacker might cause a denial of service condition by sending an HTTP request with an extremely long "id" parameter.

Affected products

diaconou — encodedid\

Does this affect you?

Add your gear to cvedb and we'll alert you only when diaconou ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.