CVE-2023-3782

Published July 19th, 2023

View on NVD ↗

CVSS v3

5.9

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

DoS of the OkHttp client when using a BrotliInterceptor and surfing to a malicious web server, or when an attacker can perform MitM to inject a Brotli zip-bomb into an HTTP response

square/okhttp

Square’s meticulous HTTP client for the JVM, Android, and GraalVM.

GitHub

47K