CVE-2024-21319 – Microsoft Identity Denial of service vulnerability

https://notcve.org/view.php?id=CVE-2024-21319

09 Jan 2024 — Microsoft Identity Denial of service vulnerability Vulnerabilidad de denegación de servicio de identidad de Microsoft A Denial of Service vulnerability was found in .NET Core project templates that utilize JWT-based authentication tokens. This issue may allow an unauthenticated client to consume arbitrarily large amounts of server memory, potentially triggering an out-of-memory condition on the server and making the server no longer able to respond to legitimate requests. Vishal Mishra and Anita Gaud discov... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319 • CWE-20: Improper Input Validation CWE-400: Uncontrolled Resource Consumption •