{"id":"CVE-2023-48713","summary":"Knative Serving vulnerable to attacker-controlled pod causing denial of service of autoscaler","details":"Knative Serving builds on Kubernetes to support deploying and serving of applications and functions as serverless containers. An attacker who controls a pod to a degree where they can control the responses from the /metrics endpoint can cause Denial-of-Service of the autoscaler from an unbound memory allocation bug. This is a DoS vulnerability, where a non-privileged Knative user can cause a DoS for the cluster. This issue has been patched in version 0.39.0.","aliases":["GHSA-qmvj-4qr9-v547","GO-2023-2355"],"modified":"2026-04-19T04:15:31.233600Z","published":"2023-11-28T03:44:59.538Z","database_specific":{"cwe_ids":["CWE-400"],"cna_assigner":"GitHub_M","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/48xxx/CVE-2023-48713.json"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/48xxx/CVE-2023-48713.json"},{"type":"ADVISORY","url":"https://github.com/knative/serving/security/advisories/GHSA-qmvj-4qr9-v547"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-48713"},{"type":"FIX","url":"https://github.com/knative/serving/commit/012ee2509231b80b7842139bfabc30516d3026ca"},{"type":"FIX","url":"https://github.com/knative/serving/commit/101f814112b9ca0767f457e7e616b46205551cf1"},{"type":"FIX","url":"https://github.com/knative/serving/commit/fff40ef7bac9be8380ec3d1c70fc15b57093382a"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/knative/serving","events":[{"introduced":"0"},{"fixed":"09aa41b4c0af156693de4618ee20017e01363b62"},{"introduced":"f1617ef38eac3c70cbc2182fa322bab33b2163e4"},{"fixed":"7eb8b64a176c619dd97fcbb50dbb2478e8ca2469"},{"fixed":"012ee2509231b80b7842139bfabc30516d3026ca"},{"fixed":"101f814112b9ca0767f457e7e616b46205551cf1"},{"fixed":"fff40ef7bac9be8380ec3d1c70fc15b57093382a"}],"database_specific":{"source":["CPE_FIELD","REFERENCES"],"extracted_events":[{"introduced":"0"},{"fixed":"1.10.5"},{"introduced":"1.11.0"},{"fixed":"1.11.3"}],"cpe":"cpe:2.3:a:knative:serving:*:*:*:*:*:*:*:*"}}],"versions":["knative-v1.0.0","knative-v1.1.0","knative-v1.10.0","knative-v1.10.1","knative-v1.10.2","knative-v1.10.3","knative-v1.10.4","knative-v1.11.0","knative-v1.11.1","knative-v1.11.2","knative-v1.2.0","knative-v1.3.0","knative-v1.4.0","knative-v1.5.0","knative-v1.6.0","knative-v1.7.0","knative-v1.8.0","knative-v1.9.0","v0.1.0","v0.10.0","v0.11.0","v0.12.0","v0.13.0","v0.14.0","v0.15.0","v0.16.0","v0.17.0","v0.18.0","v0.19.0","v0.2.0","v0.20.0","v0.21.0","v0.22.0","v0.23.0","v0.24.0","v0.25.0","v0.26.0","v0.27.0","v0.28.0","v0.29.0","v0.3.0","v0.30.0","v0.31.0","v0.32.0","v0.33.0","v0.34.0","v0.35.0","v0.36.0","v0.37.0","v0.37.1","v0.37.2","v0.37.3","v0.37.4","v0.38.0","v0.38.1","v0.38.2","v0.4.0","v0.5.0","v0.6.0","v0.7.0","v0.8.0","v0.9.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-48713.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}