CVE-2018-18855
unknown
CVSS v3
—
VIR risk
—
Description
Uncontrolled Resource Consumption in Spray JSON
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| Maven | io.spray:spray-json_2.10 | <1.3.5 | 1.3.5 |
| Maven | io.spray:spray-json_2.11 | <1.3.5 | 1.3.5 |
| Maven | io.spray:spray-json_2.11.0-RC4 | | |
| Maven | io.spray:spray-json_2.12 | <1.3.5 | 1.3.5 |
| Maven | io.spray:spray-json_2.12.0-M3 | | |
| Maven | io.spray:spray-json_2.12.0-M5 | | |
| Maven | io.spray:spray-json_2.12.0-RC1 | | |
| Maven | io.spray:spray-json_2.12.0-RC2 | | |
| Maven | io.spray:spray-json_2.13.0-M2 | | |
| Maven | io.spray:spray-json_2.13.0-M4 | | |
| Maven | io.spray:spray-json_2.13.0-M5 | <1.3.5 | 1.3.5 |
| Maven | io.spray:spray-json_2.9.3 | | |
References
💬 Discuss CVE-2018-18855 on VIR Community →
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.