Lucene search
K

5 matches found

SUSE CVE
SUSE CVE
added 2025/11/09 12:23 a.m.7 views

SUSE CVE-2025-59836

Omni manages Kubernetes on bare metal, virtual machines, or in a cloud. Prior to 1.1.5 and 1.0.2, there is a nil pointer dereference vulnerability in the Omni Resource Service allows unauthenticated users to cause a server panic and denial of service by sending empty create/update resource reques...

7.5CVSS6.7AI score0.0053EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/10/14 9:49 p.m.10 views

CVE-2025-59836

Omni manages Kubernetes on bare metal, virtual machines, or in a cloud. Prior to 1.1.5 and 1.0.2, there is a nil pointer dereference vulnerability in the Omni Resource Service allows unauthenticated users to cause a server panic and denial of service by sending empty create/update resource reques...

5.3CVSS6.7AI score0.0053EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/10/13 8:43 p.m.2 views

CVE-2025-59836 Omni is Vulnerable to DoS via Empty Create/Update Resource Requests

Omni manages Kubernetes on bare metal, virtual machines, or in a cloud. Prior to 1.1.5 and 1.0.2, there is a nil pointer dereference vulnerability in the Omni Resource Service allows unauthenticated users to cause a server panic and denial of service by sending empty create/update resource reques...

5.3CVSS6.3AI score0.0053EPSS
Exploits1References3
CVE
CVE
added 2025/10/13 8:43 p.m.16 views

CVE-2025-59836

Summary (CVE-2025-59836): Omni (github.com/siderolabs/omni) is vulnerable to a Denial of Service via empty Create/Update Resource requests. The root cause is a nil pointer dereference in isSensitiveSpec, which calls CreateResource without verifying resource.Metadata is non-nil. If a resource with...

7.5CVSS6.3AI score0.0053EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2025/10/13 8:43 p.m.5 views

CVE-2025-59836 Omni is Vulnerable to DoS via Empty Create/Update Resource Requests

Omni manages Kubernetes on bare metal, virtual machines, or in a cloud. Prior to 1.1.5 and 1.0.2, there is a nil pointer dereference vulnerability in the Omni Resource Service allows unauthenticated users to cause a server panic and denial of service by sending empty create/update resource reques...

5.3CVSS6.5AI score0.0053EPSS
Exploits1References5
Rows per page
Query Builder