VYPR
Unrated severityNVD Advisory· Published Jan 21, 2025· Updated Jan 21, 2025

Kibana allocation of resources without limits or throttling leads to crash

CVE-2024-52973

Description

An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted request to /api/log_entries/summary. This can be carried out by users with read access to the Observability-Logs feature in Kibana.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Elastic/Kibanallm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 7.17.0, 8.0.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.