CVE-2020-26882

Uncontrolled Recursion in maven/com.typesafe.play/play_2.11

Identifier

CVE-2020-26882

Package Slug

maven/com.typesafe.play/play_2.11

Vulnerability

Uncontrolled Recursion

Description

In Play Framework, data amplification can occur when an application accepts multipart/form-data JSON input.

Affected Versions

All versions up to 2.6.25, all versions starting from 2.7.0 up to 2.7.5, all versions starting from 2.8.0 up to 2.8.2

Solution

Upgrade to versions 2.7.6, 2.8.3, or above

Last Modified

2020-11-13

source