ManageIQ vulnerable to DoS Attack when creating TimeProfiles

ManageIQ is an open-source management platform. A flaw was found in the ManageIQ API prior to version radjabov-2 where a malformed TimeProfile could be created causing later UI and API requests to timeout leading to a Denial of Service. Version radjabov-2 contains a patch. One may also apply the patch manually.

N/A

输入验证不恰当

ManageIQ 输入验证错误漏洞

ManageIQ是ManageIQ开源的一个Web管理平台。 ManageIQ radjabov-2之前版本存在输入验证错误漏洞，该漏洞源于可创建格式错误的TimeProfile，可能导致后续UI和API请求超时，引发拒绝服务。

N/A

N/A