CVE-2024-12401
CVSS V2 None
CVSS V3 None
Description
A flaw was found in the cert-manager package. This flaw allows an attacker who can modify PEM data that the cert-manager reads, for example, in a Secret resource, to use large amounts of CPU in the cert-manager controller pod to effectively create a denial-of-service (DoS) vector for the cert-manager in the cluster.
Overview
- CVE ID
- CVE-2024-12401
- Assigner
- redhat
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-12-12T09:06:03.612Z
- Last Modified Date
- 2024-12-12T15:44:58.794Z
Weakness Enumerations
References
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-12401 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-12401 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2024-12-13 13:28:18 | Added to TrackCVE |