CVE

CVE-2025-59836

Omni is Vulnerable to DoS via Empty Create/Update Resource Requests in github.com/siderolabs/omni

Back to all

CVE

CVE-2025-59836

Omni is Vulnerable to DoS via Empty Create/Update Resource Requests in github.com/siderolabs/omni

Package Versions Affected

No items found.

Automatically patch vulnerabilities without upgrading

Fix Without Upgrading

Detect compatible fix

Apply safe remediation

Fix with a single pull request

CVSS Version

5.3

3.1

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Related Resources

No items found.

References

https://github.com/siderolabs/omni/security/advisories/GHSA-4p3p-cr38-v5xp, https://nvd.nist.gov/vuln/detail/CVE-2025-59836, https://github.com/siderolabs/omni/commit/1396083f766a1b0380e9949968d7fc17b7afecaa, https://github.com/siderolabs/omni/commit/1fd954af64985a8b3dbf5b11deddbf7cd953f5ae

Severity

7.5

CVSS Score

Basic Information

Ecosystem

Base CVSS

7.5

EPSS Probability

0.00213%

EPSS Percentile

0.4373%

Introduced Version

1.1.0-beta.0

Fix Available

1.1.5

Fix Critical Vulnerabilities Instantly

Secure your app without upgrading.

Fix Without Upgrading

Get a Demo

Let's Patch It!

CVE-2025-59836

CVE-2025-59836

Package Versions Affected

Automatically patch vulnerabilities without upgrading

CVSS Version

Related Resources

References

Severity

7.5

Basic Information

Fix Critical Vulnerabilities Instantly