Authors: Created by IBM

There is a vulnerability in the GraphQL Java library used by IBM WebSphere Application Server Liberty with the mpGraphQL-1.0 or mpGraphQL-2.0 feature enabled.This has been addressed. CVEID:  CVE-2022-37734^[1]
DESCRIPTION:  GraphQL Java is vulnerable to a denial of service, caused by an uncontrolled resource consumption flaw.By sending a specially-crafted request using Directive overloading, a remote attacker could exploit this vulnerability to cause a denial of...

Just published by IBM: Read more