The vulnerability of the `JsonSerializer.DeserializeAsyncEnumerable` method in the System.Text.Json library of the Microsoft.NET software platform and the Microsoft Visual Studio development tools allows a attacker to cause a service failure.

The vulnerability of the JsonSerializer.DeserializeAsyncEnumerable method in the System.Text.Json library of the Microsoft .NET software platform and the Microsoft Visual Studio development tools is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a...

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS when using .NET's JsonSerializer.DeserializeAsyncEnumerable function on untrusted input. Details Denial of Service DoS describes a family of attacks, all aimed at making a system inaccessible to its intended and...

PT-2024-4734 · Microsoft +8 · Visual Studio +10

Name of the Vulnerable Software and Affected Versions: .NET Core versions prior to 8.x Visual Studio versions prior to 8.x Description: The issue is related to an uncontrolled resource consumption in the JsonSerializer.DeserializeAsyncEnumerable method of the System.Text.Json library in Microsoft...