Stack Overflow

cn.hutool: hutool-core is vulnerable to Stack Overflow Error. The vulnerability is due to a defect in the NumberUtil.toBigDecimal function which results in StackOverflowError when a NaN value is passed as an argument to the function. This eventually results in application crash resulting in Denia...

hutool-core was discovered to contain a stack overflow via NumberUtil.toBigDecimal method

The NumberUtil.toBigDecimal method in hutool-core was discovered to contain a stack overflow...

GHSA-M5HF-M3R2-XQ53 hutool-core was discovered to contain a stack overflow via NumberUtil.toBigDecimal method

The NumberUtil.toBigDecimal method in hutool-core was discovered to contain a stack overflow...

Stack overflow

The NumberUtil.toBigDecimal method in hutool-core v5.8.23 was discovered to contain a stack overflow...

CVE-2023-51080

The NumberUtil.toBigDecimal method in hutool-core v5.8.23 was discovered to contain a stack overflow...

CVE-2023-51080

CVE-2023-51080 affects hutool-core v5.8.23, where NumberUtil.toBigDecimal is vulnerable to a StackOverflowError (noted in Red Hat, Veracode, OSV, and other feeds) and can lead to application crash/DoS. The root cause is a stack overflow in toBigDecimal when handling NaN values per Veracode’s desc...

Hutool Security Vulnerabilities

Hutool is a small but complete Java tool library from the Chinese Dromara community. A security vulnerability exists in Hutool version v5.8.23, which stems from a stack overflow vulnerability in the NumberUtil.toBigDecimal method...