GHSA-M5HF-M3R2-XQ53 hutool-core was discovered to contain a stack overflow via NumberUtil.toBigDecimal method

The NumberUtil.toBigDecimal method in hutool-core was discovered to contain a stack overflow...

CVE-2023-51080

The NumberUtil.toBigDecimal method in hutool-core v5.8.23 was discovered to contain a stack overflow...

Stack overflow

The NumberUtil.toBigDecimal method in hutool-core v5.8.23 was discovered to contain a stack overflow...

CVE-2023-51080

The NumberUtil.toBigDecimal method in hutool-core v5.8.23 was discovered to contain a stack overflow...

CVE-2023-51080

CVE-2023-51080 affects hutool-core v5.8.23, where NumberUtil.toBigDecimal is vulnerable to a StackOverflowError (noted in Red Hat, Veracode, OSV, and other feeds) and can lead to application crash/DoS. The root cause is a stack overflow in toBigDecimal when handling NaN values per Veracode’s desc...

PT-2023-31758 · Unknown · Hutool-Core

Name of the Vulnerable Software and Affected Versions: hutool-core version 5.8.23 Description: The NumberUtil.toBigDecimal method in hutool-core was discovered to contain a stack overflow. Recommendations: For hutool-core version 5.8.23, consider disabling the toBigDecimal method in the NumberUti...

Hutool Security Vulnerabilities

Hutool is a small but complete Java tool library from the Chinese Dromara community. A security vulnerability exists in Hutool version v5.8.23, which stems from a stack overflow vulnerability in the NumberUtil.toBigDecimal method...