CVE-2026-33013 | micronaut-projects micronaut-core up to 3.10.4/4.10.15 expandArrayToThreshold infinite loop (GHSA-43w5-mmxv-cpvh)

Inserito da Angelo Barbosa | Mar 20, 2026 | CVE

A vulnerability was found in micronaut-projects micronaut-core up to 3.10.4/4.10.15. It has been classified as problematic. The impacted element is the function theJsonBeanPropertyBinder::expandArrayToThreshold. This manipulation causes infinite loop.

This vulnerability appears as CVE-2026-33013. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is recommended.

CVE-2026-33013 | micronaut-projects micronaut-core up to 3.10.4/4.10.15 expandArrayToThreshold infinite loop (GHSA-43w5-mmxv-cpvh)

Post correlati

CVE-2024-40604 | Nimbus Skin up to 1.42.1 on MediaWiki Sidebar Menu cross site scripting

CVE-2025-13277 | code-projects Nero Social Networking Site 1.0 /friendsphoto.php ID sql injection

CVE-2023-52599 | Linux Kernel up to 6.8-rc0 jfs fs/jfs/jfs_imap.c array index

CVE-2025-25166 | gabrieldarezzo InLocation Plugin up to 1.8 on WordPress cross-site request forgery