CVE-2024-6875

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Mar 28, 2025

Updated: Apr 1, 2025

CWE ID 401

Summary

CVE-2024-6875 is a newly identified vulnerability affecting the Infinispan component in Red Hat Data Grid. This issue involves the REST compare API, which has been found to contain a buffer leak. When large POST data is continuously sent to the REST API, an out-of-memory error can occur, potentially leading to serious consequences. This vulnerability could allow an attacker to exhaust system resources, causing denial-of-service conditions or even more severe impacts. It is crucial that Red Hat Data Grid users apply the necessary patches or updates to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Red Hat JBoss Data Grid

Affected Vendors

Red Hat

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners