4 matches found
CVE-2024-52972
An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted request to /api/metrics/snapshot. This can be carried out by users with read access to the Observability Metrics or Logs features in Kibana...
CVE-2024-52972
creationtimestamp| type| source ---|---|--- 2025-01-23 07:03:18+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2713 2025-01-23 07:15:24+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgfdjuiqlj2f 2025-01-23 07:44:35+00:00| seen|...
CVE-2024-52972 Kibana allocation of resources without limits or throttling leads to crash
An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted request to /api/metrics/snapshot. This can be carried out by users with read access to the Observability Metrics or Logs features in Kibana...
CVE-2024-52972
CVE-2024-52972 affects Kibana: an allocation of resources without limits or throttling can cause a crash via a specially crafted request to /api/metrics/snapshot. The issue is exploitable by users with read access to Observability Metrics or Logs in Kibana. Connected sources corroborate the same ...