CVE-2022-31135
MEDIUMAkashi < 1.4 - Denial of Service via Crafted Evidence Packet
Title source: llmDescription
Akashi is an open source server implementation of the Attorney Online video game based on the Ace Attorney universe. Affected versions of Akashi are subject to a denial of service attack. An attacker can use a specially crafted evidence packet to make an illegal modification, causing a server crash. This can be used to mount a denial-of-service exploit. Users are advised to upgrade. There is no known workaround for this issue.
References (2)
Core 2
Core References
Issue Tracking, Third Party Advisory x_refsource_confirm
https://github.com/AttorneyOnline/akashi/security/advisories/GHSA-vj86-vfmg-q68v
Patch, Third Party Advisory x_refsource_misc
https://github.com/AttorneyOnline/akashi/commit/5566cdfedddef1f219aee33477d9c9690bf2f78b
Scores
CVSS v3
6.5
EPSS
0.0078
EPSS Percentile
51.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-129
Status
published
Products (1)
aceattorneyonline/akashi
< 1.4
Published
Jul 07, 2022
Tracked Since
Feb 18, 2026