RSS   Podatności dla 'Spray-json'   RSS

2018-10-31
 
CVE-2018-18854

CWE-400
 

 
Lightbend Spray spray-json through 1.3.4 allows remote attackers to cause a denial of service (resource consumption) because of Algorithmic Complexity during the parsing of many JSON object fields (with keys that have the same hash code).

 
 
CVE-2018-18853

CWE-400
 

 
Lightbend Spray spray-json through 1.3.4 allows remote attackers to cause a denial of service (resource consumption) because of Algorithmic Complexity during the parsing of a field composed of many decimal digits.

 

 >>> Vendor: Lightbend 4 Produkty
Akka http
Spray-json
Play framework
Akka-http


Copyright 2021, cxsecurity.com

 

Back to Top