Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Dromara HuTool cn.hutool.core.util.ZipUtil.java resource consumption
Vulnerability Description
A vulnerability classified as problematic was found in Dromara HuTool up to 5.8.10. This vulnerability affects unknown code of the file cn.hutool.core.util.ZipUtil.java. The manipulation leads to resource consumption. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 5.8.11 is able to address this issue. It is recommended to upgrade the affected component. VDB-215974 is the identifier assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
不恰当的资源关闭或释放
Vulnerability Title
Dromara HuTool 资源管理错误漏洞
Vulnerability Description
Hutool是中国Dromara社区的一个小而全的 Java 工具类库。 Dromara HuTool 5.8.10版本及之前版本存在资源管理错误漏洞。攻击者利用该漏洞导致资源消耗。
CVSS Information
N/A
Vulnerability Type
N/A