CVE-2022-25897

Summary

The package org.eclipse.milo:sdk-server before 0.6.8 are vulnerable to Denial of Service (DoS) when bypassing the limitations for excessive memory consumption by sending multiple CloseSession requests with the deleteSubscription parameter equal to False.

Affected Software

VendorProductVersion RangeStatus
n/aorg.eclipse.milo:sdk-serverunspecified < 0.6.8affected

Weaknesses

  • Denial of Service (DoS)

ADP Enrichment

CVE Program Container

Additional References

References