Spray-json
Vulnerabilities
2
Known exploited
0
Max CVSS
7.5
Top EPSS
0.01897
Severity breakdown
Critical
0
High
2
Medium
0
Low
0
Affected version ranges
≤ 1.3.4
Also matched as (raw): spray-json
Top vulnerabilities
CVE-2018-18854Lightbend Spray spray-json through 1.3.4 allows remote attackers to cause a denial of service (resource consumption) because of Algorithmic Complexity during the parsing of many JSON object fields (with keys that have the same hash code).
CVE-2018-18853Lightbend Spray spray-json through 1.3.4 allows remote attackers to cause a denial of service (resource consumption) because of Algorithmic Complexity during the parsing of a field composed of many decimal digits.