- Description
- An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted request to /api/log_entries/summary. This can be carried out by users with read access to the Observability-Logs feature in Kibana.
- Source
- bressers@elastic.co
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 6.5
- Impact score
- 3.6
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
- Severity
- MEDIUM
- bressers@elastic.co
- CWE-770
- Hype score
- Not currently trending
CVE-2024-52973 Resource Exhaustion Vulnerability via Uncontrolled Reques... https://t.co/HPnrRsCba0 Don't wait vulnerability scanning results: https://t.co/oh1APvMMnd
@VulmonFeeds
21 Jan 2025
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-52973 An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted request to /api/log_entries/summary. This can be c… https://t.co/AU69XQVxTf
@CVEnew
21 Jan 2025
279 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes