CVE-2023-2253

moderate-risk

Published 2023-06-06

A flaw was found in the `/v2/_catalog` endpoint in distribution/distribution, which accepts a parameter to control the maximum number of records returned (query string: `n`). This vulnerability allows a malicious user to submit an unreasonably large value for `n,` causing the allocation of a massive string array, possibly causing a denial of service through excessive use of memory.

Do I need to act?

0.15% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.5/10 Medium

NETWORK / LOW complexity

Affected Products (3)

Openshift Api For Data Protection

Openshift Container Platform

Openshift Developer Tools And Services

Affected Vendors

Redhat

References (4)

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=2189886

https://lists.debian.org/debian-lts-announce/2023/06/msg00035.html

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=2189886

https://lists.debian.org/debian-lts-announce/2023/06/msg00035.html

/ 100

moderate-risk

Severity 24/34 · High

Exploitability 1/34 · Minimal

Exposure 9/34 · Low