Maven package
com.squareup.wire/wire-runtime
pkg:maven/com.squareup.wire/wire-runtime
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-58103 | Med | 5.8 | < 5.2.0 | 5.2.0 | Mar 16, 2025 | Square Wire before 5.2.0 does not enforce a recursion limit on nested groups in ByteArrayProtoReader32.kt and ProtoReader.kt. |
- affected < 5.2.0fixed 5.2.0
Square Wire before 5.2.0 does not enforce a recursion limit on nested groups in ByteArrayProtoReader32.kt and ProtoReader.kt.