Lucene search
Redhat.comRH:CVE-2024-24750HistoryFeb 18, 2024 - 11:49 a.m.
CVE-2024-24750
2024-02-1811:49:30
redhat.com
access.redhat.com
8
undici memory leak url fetch
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
15.7%
An uncontrolled resource consumption flaw was found in undici. Calling fetch(url) and not consuming the incoming body or consuming it very slowly leads to a memory leak.
Related
nvd
nvd
CVE-2024-24750
2024-02-16 22:15:07
prion
prion
Memory corruption
2024-02-16 22:15:00
osv
osv
fetch(url) leads to a memory leak in undici
2024-02-16 15:59:38
CVE-2024-24750
2024-02-16 22:15:07
debiancve
debiancve
CVE-2024-24750
2024-02-16 22:15:07
cve
cve
CVE-2024-24750
2024-02-16 22:15:07
github
github
fetch(url) leads to a memory leak in undici
2024-02-16 15:59:38
ubuntucve
ubuntucve
CVE-2024-24750
2024-02-16 00:00:00
cvelist
cvelist
CVE-2024-24750 Backpressure request ignored in fetch() in Undici
2024-02-16 21:42:29
veracode
veracode
Denial Of Service (DoS)
2024-02-19 06:11:39
ibm
ibm
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
15.7%
Related for RH:CVE-2024-24750