2 matches found
CVE-2024-23684
CVE-2024-23684 affects the Java CBOR library from com.upokecenter (CBOR) versions 4.0.0–4.5.1. The issue is an inefficient algorithmic path in DecodeFromBytes that can be exploited by a malicious input to cause a denial of service. The NVD entry notes a remote attacker scenario depending on appli...
CVE-2024-21909
PeterO.Cbor library versions 4.0.0–4.5.0 are vulnerable to a denial-of-service via crafted input fed to decoding paths (DecodeFromBytes and related decoders). Multiple connected sources confirm the affected component and version range, and describe an unauthenticated, remote attacker potentially ...