minaliC 2.0.0 Denial of Service Vulnerability via Large GET Request

Advisories

severity: high
date: December 11, 2025
Affecting: minaliC 2.0.0
CVE: CVE-2024-58306
CWE: CWE-400 Uncontrolled Resource Consumption
CVSS: 8.7
CVSS V4 Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
References: ExploitDB-51917
minaliC Sourceforge Page
Credit: Fernando Mengali
Description: minaliC 2.0.0 contains a denial of service vulnerability that allows remote attackers to crash the web server by sending oversized GET requests. Attackers can send crafted HTTP requests with excessive data to overwhelm the server and cause service interruption.