Description
Lightbend Spray spray-json through 1.3.4 allows remote attackers to cause a denial of service (resource consumption) because of Algorithmic Complexity during the parsing of a field composed of many decimal digits.
Remediation
References
https://github.com/spray/spray-json/issues/278
Related Vulnerabilities
CVE-2022-43402 Vulnerability in maven package org.jenkins-ci.plugins.workflow:workflow-cps
CVE-2023-46122 Vulnerability in maven package org.scala-sbt:sbt
CVE-2021-23396 Vulnerability in npm package lutils
CVE-2019-17558 Vulnerability in maven package org.apache.solr:solr-velocity
CVE-2020-15119 Vulnerability in maven package org.webjars.npm:auth0-lock