Vulnerability	Vulnerable Version
M Allocation of Resources Without Limits or Throttling org.mozilla:rhino is a Rhino is an open-source implementation of JavaScript written entirely in Java. It is typically embedded into Java applications to provide scripting to end users. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the `toFixed` function. An attacker can cause excessive CPU consumption and disrupt service availability by passing specially crafted floating-point numbers. How to fix Allocation of Resources Without Limits or Throttling? Upgrade `org.mozilla:rhino` to version 1.7.14.1, 1.7.15.1, 1.8.1 or higher.	[,1.7.14.1)[1.7.15,1.7.15.1)[1.8.0,1.8.1)

Allocation of Resources Without Limits or Throttling

org.mozilla:rhino is a Rhino is an open-source implementation of JavaScript written entirely in Java. It is typically embedded into Java applications to provide scripting to end users.

Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the toFixed function. An attacker can cause excessive CPU consumption and disrupt service availability by passing specially crafted floating-point numbers.

How to fix Allocation of Resources Without Limits or Throttling?

Upgrade org.mozilla:rhino to version 1.7.14.1, 1.7.15.1, 1.8.1 or higher.

[,1.7.14.1)[1.7.15,1.7.15.1)[1.8.0,1.8.1)

Go back to all versions of this package