4 matches found
CVE-2023-34617
An issue was discovered genson thru 1.6 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies...
be.cylab:java-wowa-training (=0.0.3), com.dataheaps:aspectrest (>=0.1.13 <=0.1.15) +38 more potentially affected by CVE-2023-34617 via com.owlike:genson (>=0.95 <=1.6)
com.owlike:genson MAVEN version =0.95, =0.1.13, =0.9.1, =0.9.1, =0.1.0, =1.5, =1.0, =1.3, =1.3, =1.5, =5.3.0.120, =6.2.29, =5.3.0.120, =5.3.0.120, =6.5.47 and more Source cves: CVE-2023-34617 Source advisory: OSV:GHSA-FJ64-QPRX-Q7VQ...
CVE-2023-34617
An issue was discovered genson thru 1.6 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies...
CVE-2023-34617
CVE-2023-34617 affects the Python/Java library genson up to version 1.6 and earlier. An attacker can trigger a denial of service (DoS) by providing crafted objects that use cyclic dependencies (also variants with deeply nested structures), per multiple sources. CVSSv3.1 base score is 7.5 (HIGH): ...