spring-amqp is vulnerable to denial of service. An attacker can cause an application crash through the message.toString()
function as it deserialize the body for a message with content-type application/x-java-serialized-object
by constructing a malicious java.util.Dictionary
object
CPE | Name | Operator | Version |
---|---|---|---|
spring amqp core | le | 2.2.18.RELEASE | |
spring amqp core | le | 2.3.10 | |
spring amqp core | le | 2.2.18.RELEASE | |
spring amqp core | le | 2.3.10 |