CVE-2023-46738
CVE-2023-46738 affects CubeFS HandlerNode (versions before 3.3.1). A malicious, authenticated user can trigger a crafted HTTP request that causes the ObjectNode to allocate memory beyond available limits, leading to memory exhaustion and denial of service. Root cause: improper handling of incomin...