Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Infinite recursion in Jettison leads to denial of service when creating a crafted JSONArray
Vulnerability Description
An infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This leads to a StackOverflowError exception being thrown.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未经控制的递归
Vulnerability Title
Jettison 安全漏洞
Vulnerability Description
Jettison是jettison-json开源的Jettison 是一个 Java 库。,用于在 StAX 的帮助下将 XML 转换为 JSON。 Jettison JSONArray存在安全漏洞,该漏洞源于Jettison 中的无限递归导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A