Description

XML Entity Expansion (Billion Laughs Attack) on Pippo 1.12.0 results in Denial of Service.Entities are created recursively and large amounts of heap memory is taken. Eventually, the JVM process will run out of memory. Otherwise, if the OS does not bound the memory on that process, memory will continue to be exhausted and will affect other processes on the system.

Remediation

References

https://hackerone.com/reports/506791

Related Vulnerabilities

CVE-2020-27216 Vulnerability in maven package jetty:jetty

CVE-2020-7744 Vulnerability in maven package com.mintegral.msdk:alphab

CVE-2020-8127 Vulnerability in maven package org.webjars.npm:reveal.js

CVE-2018-18853 Vulnerability in maven package io.spray:spray-json_2.12

CVE-2021-23460 Vulnerability in npm package min-dash

Severity

High

Classification

CWE-776 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Exploit Third Party Advisory