VYPR
High severityNVD Advisory· Published Aug 1, 2022· Updated Apr 22, 2025

Juniper is vulnerable to @DOS GraphQL Nested Fragments overflow

CVE-2022-31173

Description

Juniper is a GraphQL server library for Rust. Affected versions of Juniper are vulnerable to uncontrolled recursion resulting in a program crash. This issue has been addressed in version 0.15.10. Users are advised to upgrade. Users unable to upgrade should limit the recursion depth manually.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
junipercrates.io
< 0.15.100.15.10

Affected products

2

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.