VYPR
Unrated severityNVD Advisory· Published Jan 23, 2025· Updated Jan 23, 2025

Kibana allocation of resources without limits or throttling leads to crash

CVE-2024-52972

Description

An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted request to /api/metrics/snapshot. This can be carried out by users with read access to the Observability Metrics or Logs features in Kibana.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.