Описание
A vulnerability has been identified within Rancher Manager in which it did not enforce request body size limits on certain public (unauthenticated) and authenticated API endpoints. This allows a malicious user to exploit this by sending excessively large payloads, which are fully loaded into memory during processing, leading to Denial of Service (DoS).
EPSS
Процентиль: 7%
0.00028
Низкий
8.2 High
CVSS3
Дефекты
CWE-770
Связанные уязвимости
CVSS3: 8.2
github
5 месяцев назад
Rancher affected by unauthenticated Denial of Service
EPSS
Процентиль: 7%
0.00028
Низкий
8.2 High
CVSS3
Дефекты
CWE-770