CVE-2023-7272 Information

Description

In Eclipse Parsson before 1.0.4 and 1.1.3 a document with a large depth of nested objects can allow an attacker to cause a Java stack overflow exception and denial of service. Eclipse Parsson allows processing (e.g. parse generate transform and query) JSON documents.

Reference

https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/12