Lucene search
Veracode Vulnerability DatabaseVERACODE:47514HistoryJun 13, 2024 - 8:29 a.m.
Denial Of Service (DoS)
2024-06-1308:29:20
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
denial of service
vulnerability
improper input handling
parsequery function
crafted script
parser crash
github.com/vektah/gqlparser is vulnerable to Denial Of Service. The vulnerability is due to improper input handling in the ParseQuery function. An attacker can exploit this by sending a crafted script to cause the parser to crash.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/vektah/gqlparser | le | v2.5.13 | |
| github.com/vektah/gqlparser | le | v2.5.13 |
Related
osv
osv
CGA-f2h6-vhfv-9wfh
2024-06-19 07:35:38
CGA-28jv-3vhj-mh4f
2024-06-13 16:04:09
CGA-pq49-565p-4jxc
2024-06-13 16:06:08
vulnrichment
vulnrichment
CVE-2023-49559
2024-06-12 00:00:00
cvelist
cvelist
CVE-2023-49559
2024-06-12 00:00:00
nvd
nvd
CVE-2023-49559
2024-06-12 20:15:10
cve
cve
CVE-2023-49559
2024-06-12 20:15:10
github
github
gqlparser denial of service vulnerability via the parserDirectives function
2024-06-12 21:31:19
wolfi
wolfi
CVE-2023-49559 vulnerabilities
2024-06-21 15:32:02