Buffer Leak Vulnerability in Red Hat Data Grid REST API
CVE-2024-6875

6.5MEDIUM

Key Information:

Vendor: Red Hat
Status: Red Hat Data Grid 8; Red Hat Jboss Data Grid 7
Vendor: CVE Published:; 28 March 2025

Summary

A buffer leak vulnerability in the REST compare API of Red Hat Data Grid has been identified, which can result in an out of memory error when large POST requests are continually sent to the API. This can negatively affect the performance and stability of applications relying on this component, allowing for potential denial of service conditions.

References

https://access.redhat.com/security/cve/CVE-2024-6875

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2298555

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 28, 2025
Vulnerability Reserved
Jul 18, 2024