Description

Getahead Direct Web Remoting (DWR) before 1.1.3 allows attackers to cause a denial of service (infinite loop) via unknown vectors related to "crafted input."

Remediation

References

http://getahead.ltd.uk/dwr/changelog

Related Vulnerabilities

CVE-2010-5312 Vulnerability in npm package jquery-ui

CVE-2020-7709 Vulnerability in npm package json-pointer

CVE-2019-10158 Vulnerability in maven package org.infinispan:infinispan-spring5-embedded

CVE-2022-3510 Vulnerability in maven package com.google.protobuf:protobuf-java

CVE-2019-25158 Vulnerability in npm package tts-api

Severity

Critical

Tags

Patch NVD-CWE-Other