ByteOS Network

CVE Vulnerability Details :

CVE-2019-25342

PUBLISHED

More Info Official Page

Assigner-VulnCheck

Assigner Org ID-83251b91-4cc7-4094-a5c7-464a1b83ea10

Published At-12 Feb, 2026 | 22:48

Updated At-12 Feb, 2026 | 22:48

▼CVE Numbering Authority (CNA)

Centova Cast 3.2.12 - Denial of Service

Centova Cast 3.2.12 contains a denial of service vulnerability that allows attackers to overwhelm the system by repeatedly calling the database export API endpoint. Attackers can trigger 100% CPU load by sending multiple concurrent requests to the /api.php endpoint with crafted parameters.

Affected Products

Vendor

Centova Technologies Inc.

Product

Centova Cast

Versions

Affected

3.2.12

Problem Types

Type	CWE ID	Description
CWE	CWE-770	Allocation of Resources Without Limits or Throttling

Type: CWE

CWE ID: CWE-770

Description: Allocation of Resources Without Limits or Throttling

Metrics

Version	Base score	Base severity	Vector
4.0	7.1	HIGH	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
3.1	7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Version: 4.0

Base score: 7.1

Base severity: HIGH

Vector:

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Version: 3.1

Base score: 7.5

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Credits

finder

DroidU

References

Hyperlink	Resource
https://www.exploit-db.com/exploits/47677	exploit
https://centova.com	product
https://www.vulncheck.com/advisories/centova-cast-denial-of-service	third-party-advisory

Hyperlink: https://www.exploit-db.com/exploits/47677

Resource:

exploit

Hyperlink: https://centova.com

Resource:

product

Hyperlink: https://www.vulncheck.com/advisories/centova-cast-denial-of-service

Resource:

third-party-advisory

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References