Closed gilch closed 2 years ago
jsonista dependency jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects. https://nvd.nist.gov/vuln/detail/CVE-2020-36518
Thanks!
jsonista dependency jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects. https://nvd.nist.gov/vuln/detail/CVE-2020-36518