octo-sts is a GitHub App that acts like a Security Token Service (STS) for the Github API. This vulnerability can spike the resource utilization of the STS service, and combined with a significant traffic volume could potentially lead to a denial of service. This vulnerability is fixed in 0.1.0
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-05-10T19:05:49.063Z
Updated: 2024-08-02T02:42:59.947Z
Reserved: 2024-04-30T06:56:33.383Z
Link: CVE-2024-34079
Vulnrichment
Updated: 2024-08-02T02:42:59.947Z
NVD
Status : Awaiting Analysis
Published: 2024-05-14T15:38:29.183
Modified: 2024-05-14T16:12:23.490
Link: CVE-2024-34079
Redhat
No data.