CVE-2026-22598

Vulnerability Description

ManageIQ is an open-source management platform. A flaw was found in the ManageIQ API prior to version radjabov-2 where a malformed TimeProfile could be created causing later UI and API requests to timeout leading to a Denial of Service. Version radjabov-2 contains a patch. One may also apply the patch manually.

Vulnerability Details

Published Date

January 21, 2026

Last Modified

January 26, 2026

CWE ID

CWE-20

Source

NVD

Vendor

ManageIQ

Product

manageiq

External References

https://github.com/ManageIQ/manageiq/commit/79cef10c7d0278d8a37c3f547c426948180df4df.patch
https://github.com/ManageIQ/manageiq/commit/86132851257d73ed9e31a88315e47a8a2b838113
https://github.com/ManageIQ/manageiq/security/advisories/GHSA-m832-x3g8-63j3

CVE-2026-22598

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment