Description Insufficient file size checks resulted in a denial of service risk in the file picker's unzip functionality. Remediation References CVE-2024-25978 Related Vulnerabilities Jenkins Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-1000864) WordPress Plugin WPJobBoard SQL Injection (5.6.4) WordPress Plugin Abandoned Cart Lite for WooCommerce SQL Injection (5.8.1) Drupal Core 8.0.x Multiple Vulnerabilities (8.0.0 - 8.0.3) SharePoint CVE-2020-0972 Vulnerability (CVE-2020-0972) Severity High Classification CVE-2024-25978 CWE-770 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Tags Missing Update Known Vulnerabilities