CVE Details
Basic Information
| Title | DoS in Kron Technologies’ Kron PAM |
|---|---|
| Type | cve |
| Published | 2025-07-25T11:27:41.281Z |
| Modified | 2025-07-25T11:41:35.641Z |
Product Information
| Vendor | Kron Technologies |
|---|---|
| Product | Kron PAM |
| Version | 0 |
CVSS Information
| Base Score | 6.5 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
AI Analysis
| AI Description | This vulnerability allows attackers to perform HTTP Denial of Service (DoS) attacks by exploiting resource allocation without limits or throttling in Kron PAM, affecting versions before 3.7. |
|---|---|
| AI Severity | Medium |
| AI Vendor | Kron Technologies |
| AI Product | Kron PAM |
| AI Version | before 3.7 |
Affected Products
- Kron Technologies Kron PAM 0
Additional Information
| CWE List | CWE-770 |
|---|---|
| Source | TR-CERT |
Description
Allocation of Resources Without Limits or Throttling vulnerability in Kron Technologies Kron PAM allows HTTP DoS.This issue affects Kron PAM: before 3.7.