Simenbin

Name of the Vulnerable Software and Affected Versions: Mercurius versions 8.10.0 through 8.11.1 Description: The issue affects Mercurius, a GraphQL adapter for Fastify, where users can be subjected to a denial of service attack by sending a malformed JSON to the `/graphql` API endpoint, unless they are using a custom error handler. Recommendations: For versions 8.10.0 through 8.11.1, update to version 8.11.2 to resolve the issue. As a temporary workaround for versions 8.10.0 through 8.11.1, consider using a custom error handler to mitigate the risk of exploitation.