Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WebLogic Allocation of Resources Without Limits or Throttling Vulnerability - CVE-2019-17359 - Vulnerability Database
WebLogic

WebLogic Allocation of Resources Without Limits or Throttling Vulnerability - CVE-2019-17359

High
Reference: CVE-2019-17359
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2019-17359
Title: WebLogic Allocation of Resources Without Limits or Throttling Vulnerability
Overview:

The ASN.1 parser in Bouncy Castle Crypto (aka BC Java) 1.63 can trigger a large attempted memory allocation and resultant OutOfMemoryError error via crafted ASN.1 data. This is fixed in 1.64.