Описание
A Denial of Service (DoS) condition is possible in OpenStack Mistral in versions up to and including 7.0.3. Submitting a specially crafted workflow definition YAML file containing nested anchors can lead to resource exhaustion culminating in a denial of service.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | not-affected | 10.0.0-0ubuntu0.20.04.1 |
| eoan | ignored | end of life |
| esm-apps/bionic | released | 6.0.0-0ubuntu1.1+esm1 |
| esm-apps/focal | not-affected | 10.0.0-0ubuntu0.20.04.1 |
| esm-apps/jammy | not-affected | 10.0.0-0ubuntu0.20.04.1 |
| esm-apps/noble | not-affected | 10.0.0-0ubuntu0.20.04.1 |
| esm-apps/xenial | not-affected | code not present |
| esm-infra-legacy/trusty | DNE | |
| focal | not-affected | 10.0.0-0ubuntu0.20.04.1 |
Показывать по
EPSS
4 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
A Denial of Service (DoS) condition is possible in OpenStack Mistral in versions up to and including 7.0.3. Submitting a specially crafted workflow definition YAML file containing nested anchors can lead to resource exhaustion culminating in a denial of service.
A Denial of Service (DoS) condition is possible in OpenStack Mistral in versions up to and including 7.0.3. Submitting a specially crafted workflow definition YAML file containing nested anchors can lead to resource exhaustion culminating in a denial of service.
A Denial of Service (DoS) condition is possible in OpenStack Mistral i ...
EPSS
4 Medium
CVSS2
6.5 Medium
CVSS3