CVE-2022-40154

Name of the Vulnerable Software and Affected Versions Xstream (affected versions not specified)

Description The issue allows an attacker to cause a denial of service attack by supplying content that causes the parser to crash by stack overflow when the parser is running on user-supplied input. This vulnerability is relevant for users making use of the DTD parsing functionality.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.