Vulnerability report for adaptris/interlok-swift

Vulnerabilities	1 via 1 paths
Dependencies	5
Source	GitHub
Commit	4f42fe8a

Vulnerabilities

1 via 1 paths

Dependencies

Source

GitHub

Commit

4f42fe8a

high severity

Uncontrolled Recursion

Vulnerable module: org.apache.commons:commons-lang3
Introduced through: com.prowidesoftware:pw-swift-core@SRU2022-9.3.15

Detailed paths

Introduced through: adaptris/interlok-swift@adaptris/interlok-swift#4f42fe8af12390bfe73bb5f6c0681fe9d86c4342 › com.prowidesoftware:pw-swift-core@SRU2022-9.3.15 › org.apache.commons:commons-lang3@3.12.0

Remediation: Upgrade to com.prowidesoftware:pw-swift-core@SRU2025-10.3.8.

Overview

Affected versions of this package are vulnerable to Uncontrolled Recursion via the ClassUtils.getClass function. An attacker can cause the application to terminate unexpectedly by providing excessively long input values.

Remediation

Upgrade org.apache.commons:commons-lang3 to version 3.18.0 or higher.

References

Apache Pony Mail
GitHub Commit

Uncontrolled Recursion vulnerability report