DescriptionAn Allocation of Resources Without Limits or Throttling vulnerability in SUSE k3s allows attackers with access to K3s servers' apiserver/supervisor port (TCP 6443) cause denial of service. This issue affects k3s: from v1.24.0 before v1.24.17+k3s1, from v1.25.0 before v1.25.13+k3s1, from v1.26.0 before v1.26.8+k3s1, from sev1.27.0 before v1.27.5+k3s1, from v1.28.0 before v1.28.1+k3s1.
Upstream Security Advisories:
Overall state of this security issue: Analysis
This issue is currently rated as having important severity.
|National Vulnerability Database|
SUSE Security Advisories:
- GHSA-m4hf-6vgr-75r2, published Fri Sep 8 18:46:06 CEST 2023
SUSE Timeline for this CVECVE page created: Wed Aug 30 17:15:12 2023
CVE page last modified: Fri Oct 6 18:04:22 2023