CVE-2017-9793: DoS attack via crafted XML payload processed by REST Plugin using XStream library
(updated )
The REST Plugin in this package is using an outdated XStream library which is vulnerable and allow perform a DoS attack using malicious request with specially crafted XML payload.
References
Detect and mitigate CVE-2017-9793 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →