github - ghsa-gfh6-3pqw-x2j4

ghsa-gfh6-3pqw-x2j4

Vulnerability from github

Published

2025-03-12 15:32

Modified

2025-04-02 23:00

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Summary

SmallRye Fault Tolerance out-of-memory (OOM) issue

Details

A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory (OOM) issue. This vulnerability is externally triggered when calling the metrics URI. Every call creates a new object within meterMap and may lead to a denial of service (DoS) issue.

Show details on source website

JSON

To clipboard

{
   affected: [
      {
         package: {
            ecosystem: "Maven",
            name: "io.smallrye:smallrye-fault-tolerance-core",
         },
         ranges: [
            {
               events: [
                  {
                     introduced: "6.3.0",
                  },
                  {
                     fixed: "6.4.2",
                  },
               ],
               type: "ECOSYSTEM",
            },
         ],
      },
      {
         package: {
            ecosystem: "Maven",
            name: "io.smallrye:smallrye-fault-tolerance-core",
         },
         ranges: [
            {
               events: [
                  {
                     introduced: "6.5.0",
                  },
                  {
                     fixed: "6.9.0",
                  },
               ],
               type: "ECOSYSTEM",
            },
         ],
      },
   ],
   aliases: [
      "CVE-2025-2240",
   ],
   database_specific: {
      cwe_ids: [
         "CWE-1325",
      ],
      github_reviewed: true,
      github_reviewed_at: "2025-03-12T20:19:58Z",
      nvd_published_at: "2025-03-12T15:15:42Z",
      severity: "HIGH",
   },
   details: "A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory (OOM) issue. This vulnerability is externally triggered when calling the metrics URI. Every call creates a new object within meterMap and may lead to a denial of service (DoS) issue.",
   id: "GHSA-gfh6-3pqw-x2j4",
   modified: "2025-04-02T23:00:12Z",
   published: "2025-03-12T15:32:06Z",
   references: [
      {
         type: "ADVISORY",
         url: "https://nvd.nist.gov/vuln/detail/CVE-2025-2240",
      },
      {
         type: "WEB",
         url: "https://github.com/smallrye/smallrye-fault-tolerance/pull/985",
      },
      {
         type: "WEB",
         url: "https://github.com/smallrye/smallrye-fault-tolerance/pull/985/files#diff-88c4a089e0cb88e4bdf285490e2617c29b9979a778e33957e4448260e286b91aR299",
      },
      {
         type: "WEB",
         url: "https://github.com/smallrye/smallrye-fault-tolerance/commit/e8bcad3d5e8bbac0a3219bd5c13661adf6ed6bbb",
      },
      {
         type: "WEB",
         url: "https://access.redhat.com/errata/RHSA-2025:3376",
      },
      {
         type: "WEB",
         url: "https://access.redhat.com/errata/RHSA-2025:3541",
      },
      {
         type: "WEB",
         url: "https://access.redhat.com/security/cve/CVE-2025-2240",
      },
      {
         type: "WEB",
         url: "https://bugzilla.redhat.com/show_bug.cgi?id=2351452",
      },
      {
         type: "PACKAGE",
         url: "https://github.com/smallrye/smallrye-fault-tolerance",
      },
      {
         type: "WEB",
         url: "https://smallrye.io/blog/fault-tolerance-6-9-0",
      },
   ],
   schema_version: "1.4.0",
   severity: [
      {
         score: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
         type: "CVSS_V3",
      },
   ],
   summary: "SmallRye Fault Tolerance out-of-memory (OOM) issue",
}

cve-2025-2240

Vulnerability from cvelistv5

Published

2025-03-12 14:55

Modified

2025-04-02 16:50

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Summary

References

▼	URL	Tags
	https://access.redhat.com/errata/RHSA-2025:3376	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:3541	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/security/cve/CVE-2025-2240	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2351452	issue-tracking, x_refsource_REDHAT
	https://github.com/advisories/GHSA-gfh6-3pqw-x2j4

Impacted products

Vendor

Product

Version

▼

Red Hat

Red Hat Build of Apache Camel 4.8 for Quarkus 3.15

cpe:/a:redhat:camel_quarkus:3

Red Hat	Red Hat Build of Apache Camel 4.8 for Quarkus 3.15	cpe:/a:redhat:camel_quarkus:3
Red Hat	Red Hat build of Quarkus 3.15.4	cpe:/a:redhat:quarkus:3.15::el8
Red Hat	Red Hat build of Apache Camel for Spring Boot 4	cpe:/a:redhat:camel_spring_boot:4
Red Hat	Red Hat build of Apicurio Registry 2	cpe:/a:redhat:service_registry:2
Red Hat	Red Hat build of Apicurio Registry 3	cpe:/a:redhat:apicurio_registry:3
Red Hat	Red Hat build of Quarkus	cpe:/a:redhat:quarkus:3
Red Hat	Red Hat Fuse 7	cpe:/a:redhat:jboss_fuse:7
Red Hat	Red Hat Integration Camel K 1	cpe:/a:redhat:integration:1
Red Hat	Red Hat JBoss Enterprise Application Platform 7	cpe:/a:redhat:jboss_enterprise_application_platform:7
Red Hat	Red Hat JBoss Enterprise Application Platform 8	cpe:/a:redhat:jboss_enterprise_application_platform:8
Red Hat	Red Hat JBoss Enterprise Application Platform Expansion Pack	cpe:/a:redhat:jbosseapxp

Show details on NVD website

JSON

To clipboard

{
   containers: {
      cna: {
         affected: [
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:camel_quarkus:3",
               ],
               defaultStatus: "unaffected",
               packageName: "com.redhat.quarkus.platform/quarkus-camel-bom",
               product: "Red Hat Build of Apache Camel 4.8 for Quarkus 3.15",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:camel_quarkus:3",
               ],
               defaultStatus: "unaffected",
               packageName: "com.redhat.quarkus.platform/quarkus-cxf-bom",
               product: "Red Hat Build of Apache Camel 4.8 for Quarkus 3.15",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
               cpes: [
                  "cpe:/a:redhat:quarkus:3.15::el8",
               ],
               defaultStatus: "unaffected",
               packageName: "io.smallrye/smallrye-fault-tolerance-core",
               product: "Red Hat build of Quarkus 3.15.4",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:camel_spring_boot:4",
               ],
               defaultStatus: "affected",
               packageName: "io.smallrye/smallrye-fault-tolerance-core",
               product: "Red Hat build of Apache Camel for Spring Boot 4",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:service_registry:2",
               ],
               defaultStatus: "affected",
               packageName: "io.smallrye/smallrye-fault-tolerance-core",
               product: "Red Hat build of Apicurio Registry 2",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:apicurio_registry:3",
               ],
               defaultStatus: "affected",
               packageName: "io.smallrye/smallrye-fault-tolerance-core",
               product: "Red Hat build of Apicurio Registry 3",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:quarkus:3",
               ],
               defaultStatus: "unaffected",
               packageName: "io.smallrye/smallrye-fault-tolerance-apiimpl",
               product: "Red Hat build of Quarkus",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:jboss_fuse:7",
               ],
               defaultStatus: "unknown",
               packageName: "io.smallrye/smallrye-fault-tolerance-core",
               product: "Red Hat Fuse 7",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:integration:1",
               ],
               defaultStatus: "affected",
               packageName: "io.smallrye/smallrye-fault-tolerance-core",
               product: "Red Hat Integration Camel K 1",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
               cpes: [
                  "cpe:/a:redhat:jboss_enterprise_application_platform:7",
               ],
               defaultStatus: "unaffected",
               packageName: "io.smallrye/smallrye-fault-tolerance-core",
               product: "Red Hat JBoss Enterprise Application Platform 7",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
               cpes: [
                  "cpe:/a:redhat:jboss_enterprise_application_platform:8",
               ],
               defaultStatus: "unaffected",
               packageName: "io.smallrye/smallrye-fault-tolerance-core",
               product: "Red Hat JBoss Enterprise Application Platform 8",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
               cpes: [
                  "cpe:/a:redhat:jbosseapxp",
               ],
               defaultStatus: "unaffected",
               packageName: "io.smallrye/smallrye-fault-tolerance-core",
               product: "Red Hat JBoss Enterprise Application Platform Expansion Pack",
               vendor: "Red Hat",
            },
         ],
         datePublic: "2025-03-12T00:00:00.000Z",
         descriptions: [
            {
               lang: "en",
               value: "A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory (OOM) issue. This vulnerability is externally triggered when calling the metrics URI. Every call creates a new object within meterMap and may lead to a denial of service (DoS) issue.",
            },
         ],
         metrics: [
            {
               other: {
                  content: {
                     namespace: "https://access.redhat.com/security/updates/classification/",
                     value: "Important",
                  },
                  type: "Red Hat severity rating",
               },
            },
            {
               cvssV3_1: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "NONE",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               format: "CVSS",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-1325",
                     description: "Improperly Controlled Sequential Memory Allocation",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-04-02T16:50:15.786Z",
            orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
            shortName: "redhat",
         },
         references: [
            {
               name: "RHSA-2025:3376",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:3376",
            },
            {
               name: "RHSA-2025:3541",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:3541",
            },
            {
               tags: [
                  "vdb-entry",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/security/cve/CVE-2025-2240",
            },
            {
               name: "RHBZ#2351452",
               tags: [
                  "issue-tracking",
                  "x_refsource_REDHAT",
               ],
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2351452",
            },
            {
               url: "https://github.com/advisories/GHSA-gfh6-3pqw-x2j4",
            },
         ],
         timeline: [
            {
               lang: "en",
               time: "2025-03-12T02:23:44.660000+00:00",
               value: "Reported to Red Hat.",
            },
            {
               lang: "en",
               time: "2025-03-12T00:00:00+00:00",
               value: "Made public.",
            },
         ],
         title: "Smallrye-fault-tolerance: smallrye fault tolerance",
         workarounds: [
            {
               lang: "en",
               value: "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
            },
         ],
         x_redhatCweChain: "CWE-1325: Improperly Controlled Sequential Memory Allocation",
      },
   },
   cveMetadata: {
      assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
      assignerShortName: "redhat",
      cveId: "CVE-2025-2240",
      datePublished: "2025-03-12T14:55:15.889Z",
      dateReserved: "2025-03-12T02:36:02.101Z",
      dateUpdated: "2025-04-02T16:50:15.786Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted