← Back to CVE List

CVE-2021-35492

Published: 2021-10-05T16:15Z
Last Modified: 2024-11-21T06:12Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Wowza Streaming Engine through 4.8.11+5 could allow an authenticated, remote attacker to exhaust filesystem resources via the /enginemanager/server/vhost/historical.jsdata vhost parameter. This is due to the insufficient management of available filesystem resources. An attacker could exploit this vulnerability through the Virtual Host Monitoring section by requesting random virtual-host historical data and exhausting available filesystem resources. A successful exploit could allow the attacker to cause database errors and cause the device to become unresponsive to web-based management. (Manual intervention is required to free filesystem resources and return the application to an operational state.) > MITRE Terms of Use apply – see LICENSE‑MITRE.txt