Description

Getahead Direct Web Remoting (DWR) before 1.1.3 allows attackers to cause a denial of service (infinite loop) via unknown vectors related to "crafted input."

Remediation

References

http://getahead.ltd.uk/dwr/changelog

Related Vulnerabilities

CVE-2016-10735 Vulnerability in maven package org.webjars.bowergithub.angular-ui:bootstrap

CVE-2008-0128 Vulnerability in maven package tomcat:catalina

CVE-2018-1999003 Vulnerability in maven package org.jenkins-ci.main:jenkins-core

CVE-2023-31133 Vulnerability in npm package ghost

CVE-2018-1000620 Vulnerability in maven package org.webjars.npm:cryptiles

Severity

Critical

Tags

Patch NVD-CWE-Other