Denial of Service Vulnerability in Lightbend Spray spray-json through 1.3.4

Denial of Service Vulnerability in Lightbend Spray spray-json through 1.3.4

CVE-2018-18854 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Lightbend Spray spray-json through 1.3.4 allows remote attackers to cause a denial of service (resource consumption) because of Algorithmic Complexity during the parsing of many JSON object fields (with keys that have the same hash code).

Learn more about our Web Application Penetration Testing UK.