Description
A denial of service exists in strapi v3.0.0-beta.18.3 and earlier that can be abused in the admin console using admin rights can lead to arbitrary restart of the application.
Remediation
References
https://hackerone.com/reports/768574
Related Vulnerabilities
CVE-2020-15366 Vulnerability in maven package org.webjars.bowergithub.epoberezkin:ajv
CVE-2022-0839 Vulnerability in maven package org.liquibase:liquibase-core
CVE-2021-23387 Vulnerability in npm package trailing-slash
CVE-2023-26132 Vulnerability in npm package dottie
CVE-2023-3691 Vulnerability in maven package org.webjars.bowergithub.sentsin:layui