Количество 2
Количество 2
CVE-2024-34079
octo-sts is a GitHub App that acts like a Security Token Service (STS) for the Github API. This vulnerability can spike the resource utilization of the STS service, and combined with a significant traffic volume could potentially lead to a denial of service. This vulnerability is fixed in 0.1.0
GHSA-75r6-6jg8-pfcq
octo-sts vulnerable to unauthenticated attacker causing unbounded CPU and memory usage
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-34079 octo-sts is a GitHub App that acts like a Security Token Service (STS) for the Github API. This vulnerability can spike the resource utilization of the STS service, and combined with a significant traffic volume could potentially lead to a denial of service. This vulnerability is fixed in 0.1.0 | CVSS3: 3.7 | 0% Низкий | больше 1 года назад |
| GHSA-75r6-6jg8-pfcq octo-sts vulnerable to unauthenticated attacker causing unbounded CPU and memory usage | CVSS3: 3.7 | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу