In Eclipse Parsson before 1.0.4 and 1.1.3, a document with a large depth of nested objects can allow an attacker to cause a Java stack overflow exception and denial of service. Eclipse Parsson allows processing (e.g. parse, generate, transform and query) JSON documents.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| org.eclipse.parsson:parsson(Maven) | 1.1.0 | 1.1.3 | N/A |
| org.eclipse.parsson:parsson(Maven) | 0 | 1.0.4 | N/A |
CVSS Metrics
