CVE-2025-69233

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Apache CloudStack versions prior to 4.20.3.0 Apache CloudStack versions prior to 4.22.0.1

Description Multiple time-of-check time-of-use (TOCTOU) race conditions—where a system checks a condition and then uses the result, but the condition changes between the check and the use—exist in the resource count check and increment logic. Combined with missing validations, this allows users to exceed the allocation limits configured for their accounts or domains, potentially degrading infrastructure resources and leading to denial of service conditions.

Recommendations Upgrade to version 4.20.3.0 or later. Upgrade to version 4.22.0.1 or later.

Fix

DoS

Time Of Check To Time Of Use

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-367CWE-770

Related Identifiers

CVE-2025-69233

Affected Products

Apache Cloudstack

CVE-2025-69233

Weakness Enumeration

Related Identifiers

Affected Products

References · 6