CyberRota
← Ana sayfaya dön

CVE-2026-9165

HIGH · CVSS 7.7

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-07-06T09:16:39.400 · Çekilme zamanı: 2026-07-06T12:09:15.220664+00:00

CyberRota Yorumu

Saldırganın giriş yapmış olması gerekebilir.

CVE
CVE-2026-9165
Severity
HIGH
CVSS
7.7
EPSS
Yok
Kubernetes

Orijinal NVD Açıklaması

A flaw was found in Red Hat Advanced Cluster Security for Kubernetes (RHACS). Central does not limit the depth of GraphQL queries served on the authenticated GraphQL API. An authenticated user with a valid API token can send deeply nested queries that cause excessive resource consumption in Central, resulting in a denial of service for the management plane.