3 matches found
CVE-2022-31173 Juniper is vulnerable to @DOS GraphQL Nested Fragments overflow
Juniper is a GraphQL server library for Rust. Affected versions of Juniper are vulnerable to uncontrolled recursion resulting in a program crash. This issue has been addressed in version 0.15.10. Users are advised to upgrade. Users unable to upgrade should limit the recursion depth manually...
CVE-2022-31173
CVE-2022-31173 affects the Juniper GraphQL server library for Rust. Affected versions are vulnerable to uncontrolled recursion, causing a program crash (denial of service). The issue is addressed in version 0.15.10; users should upgrade. If upgrading is not possible, a manual limit on recursion d...
CVE-2022-31173
creationtimestamp| type| source ---|---|--- 2022-07-28 14:24:43+00:00| published-proof-of-concept| https://github.com/graphql-rust/juniper/security/advisories/GHSA-4rx6-g5vg-5f3j 2022-08-01 22:17:01+00:00| seen| https://t.me/cibsecurity/47366...