Approved changes feed: RSS · Atom

cpe:2.3:a:lightbend:spray-json:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorLightbend (eeba8d5c-f0b3-5068-b0af-843cc375ab14)
ProductSpray Json (9b7f195c-4bee-549e-967e-270ee72ee693)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/spray/spray-json purl2cpe 2026-06-01 10:16:13.054130

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2018-18854 vulnerable 2026-06-08 05:11:14.825868 Details available
Lightbend Spray spray-json through 1.3.4 allows remote attackers to cause a denial of service (resource consumption) because of Algorithmic Complexity during the parsing of many JSON object fields (with keys that have the same hash code).
Published: 2018-10-31T05:00:00.000Z
Updated: 2024-08-05T11:23:08.869Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-18853 vulnerable 2026-06-08 05:11:14.825354 Details available
Lightbend Spray spray-json through 1.3.4 allows remote attackers to cause a denial of service (resource consumption) because of Algorithmic Complexity during the parsing of a field composed of many decimal digits.
Published: 2018-10-31T05:00:00.000Z
Updated: 2024-08-05T11:23:08.291Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.