CVE-2021-21294

Uncontrolled Resource Consumption in maven/org.http4s/http4s-core_2.12

Identifier

CVE-2021-21294

Package Slug

maven/org.http4s/http4s-core_2.12

Vulnerability

Uncontrolled Resource Consumption

Description

Http4s (http4s-blaze-server) is a minimal, idiomatic Scala interface for HTTP services. Http4s has a vulnerability which can lead to a denial-of-service.

Affected Versions

All versions before 0.21.17

Solution

Upgrade to version 0.21.17 or above.

Last Modified

2021-02-09

source