Lucene search
Veracode Vulnerability DatabaseVERACODE:7665HistoryNov 01, 2018 - 5:34 a.m.
Denial Of Service (DoS)
2018-11-0105:34:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.002 Low
EPSS
Percentile
59.9%
spray-json is vulnerable to denial of service. An attacker is able to create an object with colliding keys to cause high resource consumption when HashMap creates a map, resulting in a denial of service condition when parsing multiple JSON object fields with the same hash code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| spray-json | le | 1.3.4 | |
| spray-json | le | 1.3.4 | |
| spray-json | le | 1.3.4 | |
| spray-json | eq | 1.3.2 | |
| spray-json | eq | 1.3.2 | |
| spray-json | eq | 1.3.4 | |
| spray-json | eq | 1.3.4 | |
| spray-json | eq | 1.3.4 | |
| spray-json | eq | 1.3.2 | |
| spray-json | eq | 1.3.2 |
Related
github
github
Uncontrolled Resource Consumption in spray-json
2018-11-09 17:41:35
osv
osv
CVE-2018-18854
2018-10-31 05:29:00
Uncontrolled Resource Consumption in spray-json
2018-11-09 17:41:35
nvd
nvd
CVE-2018-18854
2018-10-31 05:29:00
cve
cve
CVE-2018-18854
2018-10-31 05:29:00
prion
prion
Code injection
2018-10-31 05:29:00
cvelist
cvelist
CVE-2018-18854
2018-10-31 05:00:00
