cve/2024/CVE-2024-38828.md

CVE-2024-38828

Description

Spring MVC controller methods with an @RequestBody byte[] method parameter are vulnerable to a DoS attack.

POC

Reference

No PoCs from references.

Github

• https://github.com/First-Roman/sprig-mvc-demo-patch
• https://github.com/funcid/CVE-2024-38828
• https://github.com/plzheheplztrying/cve_monitor
• https://github.com/swarathesh/AI-Experts
• https://github.com/topilov/axiom-jdk
• https://github.com/zhanpengliu-tencent/medium-cve