Search for vulnerabilities
Vulnerability details: VCID-s1mx-f4zv-aaap
Vulnerability ID VCID-s1mx-f4zv-aaap
Aliases CVE-2024-34506
Summary An issue was discovered in includes/specials/SpecialMovePage.php in MediaWiki before 1.39.7, 1.40.x before 1.40.3, and 1.41.x before 1.41.1. If a user with the necessary rights to move the page opens Special:MovePage for a page with tens of thousands of subpages, then the page will exceed the maximum request time, leading to a denial of service.
Status Published
Exploitability 0.5
Weighted Severity 4.8
Risk 2.4
Affected and Fixed Packages Package Details
Weaknesses (1)
System Score Found at
cvssv3 5.3 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-34506.json
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00043 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00053 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00176 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00176 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00176 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00176 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00247 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
epss 0.00857 https://api.first.org/data/v1/epss?cve=CVE-2024-34506
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-34506.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Exploit Prediction Scoring System (EPSS)
Percentile 0.09902
EPSS Score 0.00043
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
2024-05-06T09:18:08.007528+00:00 NVD Importer Import https://nvd.nist.gov/vuln/detail/CVE-2024-34506 34.0.0rc4