Allocation of Resources Without Limits or Throttling SNYK-JAVA-ORGJSON-5962464

RADAR-base / RADAR-Rest-Source-Auth

A simple application to support authorization of wearable devices using OAuth using a webservice with REST Endpoints.

https://radar-base.org/

Apache License 2.0

1 stars 0 forks source link

Allocation of Resources Without Limits or Throttling SNYK-JAVA-ORGJSON-5962464 #242

Closed github-actions[bot] closed 8 months ago

github-actions[bot] commented 8 months ago

Overview

Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling. An attacker can cause indefinite amounts of memory to be used by inputting a string of modest size. This can lead to a Denial of Service.

Remediation

Upgrade org.json:json to version 20231013 or higher.

References

GitHub Commit
GitHub Issue
GitHub Issue