CVE-2024-34079

LOW Year: 2024
CVSS v3 Score
3.7
Low
Weakness Type
CWE-400
View all →

Vulnerability Description

octo-sts is a GitHub App that acts like a Security Token Service (STS) for the Github API. This vulnerability can spike the resource utilization of the STS service, and combined with a significant traffic volume could potentially lead to a denial of service. This vulnerability is fixed in 0.1.0

Related Vulnerabilities

CVE-2021-32823

LOW
CVSS:3.7(Low)

In the bindata RubyGem before version 2.4.10 there is a potential denial-of-service vulnerability. In affected versions it is very slow for certain classes in BinData to be created. For example BinDat...

CWE-4002021

CVE-2024-1410

LOW
CVSS:3.7(Low)

Cloudflare quiche was discovered to be vulnerable to unbounded storage of information related to connection ID retirement, which could lead to excessive resource consumption. Each QUIC connection poss...

CWE-4002024

CVE-2025-4727

MEDIUM
CVSS:3.7(Low)

A vulnerability was found in Meteor up to 3.2.1 and classified as problematic. This issue affects the function Object.assign of the file packages/ddp-server/livedata_server.js. The manipulation of the...

CWE-4002025

CVE-2019-10162

LOW
CVSS:3.5(Low)

A vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.10, 4.0.8 allowing an authorized user to cause the server to exit by inserting a crafted record in a MASTER type zon...

CWE-4002019

CVE-2025-20057

MEDIUM
CVSS:3.5(Low)

Uncontrolled resource consumption for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable denial of service via adjacent access.

CWE-4002025

CVE-2025-20084

MEDIUM
CVSS:3.5(Low)

Uncontrolled resource consumption for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable denial of service via adjacent access.

CWE-4002025