CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-50311

A denial of service (DoS) vulnerability was found in OpenShift. This flaw allows attackers to exploit the GraphQL batching functionality. The vulnerability arises when multiple queries can be sent within a single request, enabling an attacker to submit a request containing thousands of aliases in one query. This issue causes excessive resource consumption, leading to application unavailability for legitimate users.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.5%

CVSS Severity

CVSS v3 Score 6.5

References

https://access.redhat.com/errata/RHSA-2024:6122
https://access.redhat.com/security/cve/CVE-2024-50311
https://bugzilla.redhat.com/show_bug.cgi?id=2319379

Products affected by CVE-2024-50311

Redhat » Openshift Container Platform » Version: 4.0

cpe:2.3:a:redhat:openshift_container_platform:4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-50311

Products

Pricing

Contact Us