Denial of Service Vulnerability in Best Practical Request Tracker Email-Ingestion Feature

Denial of Service Vulnerability in Best Practical Request Tracker Email-Ingestion Feature

CVE-2018-18898 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

The email-ingestion feature in Best Practical Request Tracker 4.1.13 through 4.4 allows denial of service by remote attackers via an algorithmic complexity attack on email address parsing.

Learn more about our Web Application Penetration Testing UK.