A vulnerability was found in the Infinispan component in Red Hat Data Grid. The REST compare API may have a buffer leak and an out of memory error can occur when sending continual requests with large POST data to the REST API.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 02 Apr 2025 02:00:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

threat_severity

Moderate


Mon, 31 Mar 2025 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 28 Mar 2025 20:45:00 +0000

Type Values Removed Values Added
Description A vulnerability was found in the Infinispan component in Red Hat Data Grid. The REST compare API may have a buffer leak and an out of memory error can occur when sending continual requests with large POST data to the REST API.
Title Infinispan: infinispan: rest compare api has buffer leak
First Time appeared Redhat
Redhat jboss Data Grid
Weaknesses CWE-401
CPEs cpe:/a:redhat:jboss_data_grid:7
cpe:/a:redhat:jboss_data_grid:8
Vendors & Products Redhat
Redhat jboss Data Grid
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2025-08-13T12:23:18.763Z

Reserved: 2024-07-18T05:05:19.468Z

Link: CVE-2024-6875

cve-icon Vulnrichment

Updated: 2025-03-31T14:32:01.503Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-03-28T21:15:17.400

Modified: 2025-04-01T20:26:30.593

Link: CVE-2024-6875

cve-icon Redhat

Severity : Moderate

Publid Date: 2025-03-28T20:30:20Z

Links: CVE-2024-6875 - Bugzilla

cve-icon OpenCVE Enrichment

No data.