CVE-2024-12401

CVSS V2 None CVSS V3 None
Description
A flaw was found in the cert-manager package. This flaw allows an attacker who can modify PEM data that the cert-manager reads, for example, in a Secret resource, to use large amounts of CPU in the cert-manager controller pod to effectively create a denial-of-service (DoS) vector for the cert-manager in the cluster.
Overview
  • CVE ID
  • CVE-2024-12401
  • Assigner
  • redhat
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-12-12T09:06:03.612Z
  • Last Modified Date
  • 2024-12-12T15:44:58.794Z
History
Created Old Value New Value Data Type Notes
2024-12-13 13:28:18 Added to TrackCVE