Unrated severityNVD Advisory· Published Oct 22, 2024· Updated Nov 20, 2025
Graphql: denial of service (dos) vulnerability via graphql batching
CVE-2024-50311
Description
A denial of service (DoS) vulnerability was found in OpenShift. This flaw allows attackers to exploit the GraphQL batching functionality. The vulnerability arises when multiple queries can be sent within a single request, enabling an attacker to submit a request containing thousands of aliases in one query. This issue causes excessive resource consumption, leading to application unavailability for legitimate users.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:/a:redhat:openshift:4.18::el9Range: v4.18.0-202502110632.p0.g24ccf7a.assembly.stream.el9
Patches
Vulnerability mechanics
References
3- access.redhat.com/errata/RHSA-2024:6122mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/security/cve/CVE-2024-50311mitrevdb-entryx_refsource_REDHAT
- bugzilla.redhat.com/show_bug.cgimitreissue-trackingx_refsource_REDHAT
News mentions
0No linked articles in our index yet.