CVE-2021-23900: Uncontrolled Resource Consumption

January 13, 2021 (updated January 19, 2021)

OWASP json-sanitizer can output invalid JSON or throw an undeclared exception for crafted input. This may lead to denial of service if the application is not prepared to handle these situations.

References

nvd.nist.gov/vuln/detail/CVE-2021-23900

Detect and mitigate CVE-2021-23900 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →