Description

A vulnerability was found in GraphQL due to improper access controls on the GraphQL introspection query. This flaw allows unauthorized users to retrieve a comprehensive list of available queries and mutations. Exposure to this flaw increases the attack surface, as it can facilitate the discovery of flaws or errors specific to the application's GraphQL implementation.

INFO

Published Date :

2024-10-22T13:24:12.165Z

Last Modified :

2025-11-11T16:10:54.400Z

Source :

redhat
AFFECTED PRODUCTS

The following products are affected by CVE-2024-50312 vulnerability.

Vendors Products
Redhat
  • Openshift
  • Openshift Container Platform
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-50312.

URL Resource
https://access.redhat.com/errata/RHSA-2025:0115 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:0140 cve-icon cve-icon
https://access.redhat.com/security/cve/CVE-2024-50312 cve-icon cve-icon
https://bugzilla.redhat.com/show_bug.cgi?id=2319378 cve-icon cve-icon
https://github.com/openshift/console/pull/14409/files cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-50312 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-50312 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact