cve/CVE-2024-40094.md at 93476d6c370e261fdc1b2b03a08066de45e4892d

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-28 18:48:49 +00:00

0xMarcio 1fb02038e8 Update CVE sources 2025-09-29 16:08

2025-09-29 16:08:36 +00:00

Description

GraphQL Java (aka graphql-java) before 21.5 does not properly consider ExecutableNormalizedFields (ENFs) as part of preventing denial of service via introspection queries. 20.9 and 19.11 are also fixed versions.

POC

Reference

No PoCs from references.

Github

https://github.com/kabiri-labs/CVE-2024-40094

669 B Raw Blame History

CVE-2024-40094

Description

POC

Reference

Github

669 B

Raw Blame History