Description
A stack overflow in the XML.toJSONObject component of hutool-json v5.8.10 allows attackers to cause a Denial of Service (DoS) via crafted JSON or XML data.
Remediation
References
https://github.com/dromara/hutool/issues/2748
https://github.com/stleary/JSON-java/issues/708
Related Vulnerabilities
CVE-2020-11020 Vulnerability in npm package faye
CVE-2020-10714 Vulnerability in maven package org.wildfly.security:wildfly-elytron
CVE-2023-36665 Vulnerability in npm package protobufjs
CVE-2023-33202 Vulnerability in maven package org.bouncycastle:bc-fips
CVE-2021-23597 Vulnerability in npm package fastify-multipart