CVE Published: 22/10/2024 |
CVE Updated: 04/12/2024 |
CVE Year: 2024 Source: redhat |
Vendor: Red Hat |
Product: Red Hat OpenShift Container Platform 4 Status : PUBLISHED
CVE-2024-50311 Description
A denial of service (DoS) vulnerability was found in OpenShift. This flaw allows attackers to exploit the GraphQL batching functionality. The vulnerability arises when multiple queries can be sent within a single request, enabling an attacker to submit a request containing thousands of aliases in one query. This issue causes excessive resource consumption, leading to application unavailability for legitimate users.