GraphQL Java <20.1 DoS: Crafted Query Causes Stack Consumption
CVE-2023-28867 Published on March 27, 2023

In GraphQL Java (aka graphql-java) before 20.1, an attacker can send a crafted GraphQL query that causes stack consumption. The fixed versions are 20.1, 19.4, 18.4, 17.5, and 0.0.0-2023-03-20T01-49-44-80e3135.

NVD

Products Associated with CVE-2023-28867

Want to know whenever a new CVE is published for Graphql Java? stack.watch will email you.

Graphql Java

Exploit Probability

EPSS

0.13%

Percentile

32.20%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

GraphQL Java <20.1 DoS: Crafted Query Causes Stack ConsumptionCVE-2023-28867 Published on March 27, 2023

Products Associated with CVE-2023-28867

Exploit Probability

GraphQL Java <20.1 DoS: Crafted Query Causes Stack Consumption
CVE-2023-28867 Published on March 27, 2023