Description
An infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This leads to a StackOverflowError exception being thrown.
Remediation
References
https://research.jfrog.com/vulnerabilities/jettison-json-array-dos-xray-427911/
Related Vulnerabilities
CVE-2021-42697 Vulnerability in maven package com.typesafe.akka:akka-http-core_2.12
CVE-2022-24815 Vulnerability in npm package generator-jhipster
CVE-2022-41253 Vulnerability in maven package org.jenkins-ci.plugins:cons3rt
CVE-2023-2968 Vulnerability in npm package proxy
CVE-2021-34371 Vulnerability in maven package org.neo4j:neo4j