Lucene search
Veracode Vulnerability DatabaseVERACODE:32752HistoryOct 29, 2021 - 4:55 a.m.
Denial Of Service (DoS)
2021-10-2904:55:12
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.001 Low
EPSS
Percentile
35.2%
spring-amqp is vulnerable to denial of service. An attacker can cause an application crash through the message.toString() function as it deserialize the body for a message with content-type application/x-java-serialized-object by constructing a malicious java.util.Dictionary object
| CPE | Name | Operator | Version |
|---|---|---|---|
| spring amqp core | le | 2.2.18.RELEASE | |
| spring amqp core | le | 2.3.10 | |
| spring amqp core | le | 2.2.18.RELEASE | |
| spring amqp core | le | 2.3.10 |
Related
osv
osv
Deserialization of Untrusted Data in Spring AMQP
2022-05-24 19:19:03
CVE-2021-22097
2021-10-28 16:15:08
CVE-2021-22095
2021-11-30 19:15:00
prion
prion
Code injection
2021-10-28 16:15:00
cvelist
cvelist
CVE-2021-22097
2021-10-28 15:24:19
nvd
nvd
CVE-2021-22097
2021-10-28 16:15:08
github
github
Deserialization of Untrusted Data in Spring AMQP
2022-05-24 19:19:03
cve
cve
CVE-2021-22097
2021-10-28 16:15:08
ibm
ibm