Launch Week Day 1: Announcing Security Design Review

Spring MVC controller vulnerable to a DoS attack

GHSA-w3c8-7r8f-9jp8 · CVE-2024-38828

Published Nov 18, 2024 · Modified May 9, 2025

Description

Spring MVC controller methods with an @RequestBody byte[] method parameter are vulnerable to a DoS attack.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes