Vulnerability CVE-2023-33546


Published: 2023-06-01

Description:
janino 3.1.9 and earlier are subject to denial of service (DOS) attacks when using the expression evaluator.guess parameter name method. If the parser runs on user-supplied input, an attacker could supply content that causes the parser to crash due to a stack overflow.

 References:
https://github.com/janino-compiler/janino/issues/201

Copyright 2026, cxsecurity.com

 

Back to Top