Design/Logic Flaw

2023-04-1323:15:00

PRIOn knowledge base

www.prio-n.com

tikv

denial of service

security flaw

context deadline

7.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.8%

JSON

TiKV 6.1.2 allows remote attackers to cause a denial of service (fatal error, with RpcStatus UNAVAILABLE for “not leader”) upon an attempt to start a node in a situation where the context deadline is exceeded

CPENameOperatorVersion
tikveq6.1.2

CPE	Name	Operator	Version
	tikv	eq	6.1.2

References

github.com/tikv/tikv/issues/14517