CVE-2024-34079

Published May 14th, 2024

View on NVD ↗

CVSS v3

3.7

LOW

CVSS v2

N/A

Affected

PROJECT

Description

octo-sts is a GitHub App that acts like a Security Token Service (STS) for the Github API. This vulnerability can spike the resource utilization of the STS service, and combined with a significant traffic volume could potentially lead to a denial of service. This vulnerability is fixed in 0.1.0

octo-sts/app

A GitHub App that acts like a Security Token Service (STS) for the Github API

GitHub

363