Description
An infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This leads to a StackOverflowError exception being thrown.
Remediation
References
https://research.jfrog.com/vulnerabilities/jettison-json-array-dos-xray-427911/
Related Vulnerabilities
CVE-2020-35199 Vulnerability in maven package org.igniterealtime.openfire.plugins:bookmarks
CVE-2019-16869 Vulnerability in maven package org.jboss.netty:netty
CVE-2019-10744 Vulnerability in maven package org.webjars:lodash
CVE-2022-25898 Vulnerability in maven package org.webjars.bowergithub.kjur:jsrsasign
CVE-2023-34093 Vulnerability in npm package @strapi/database