CVE-2024-27268

Name of the Vulnerable Software and Affected Versions: IBM WebSphere Application Server Liberty versions 18.0.0.2 through 24.0.0.4

Description: The issue is related to an uncontrolled allocation of resources, which can be exploited by a remote attacker to cause a denial of service. This is achieved by sending a specially crafted request, allowing the attacker to consume the server's memory resources.

Recommendations: For versions 18.0.0.2 through 24.0.0.4, consider restricting access to the server to minimize the risk of exploitation until a patch is available. As a temporary workaround, monitor server resources closely to detect and respond to potential denial of service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.