VYPR

Maven package

org.eclipse.californium/scandium

pkg:maven/org.eclipse.californium/scandium

Vulnerabilities (1)

  • CVE-2022-39368Nov 9, 2022
    affected >= 3.0.0, < 3.7.0fixed 3.7.0

    Eclipse Californium is a Java implementation of RFC7252 - Constrained Application Protocol for IoT Cloud services. In versions prior to 3.7.0, and 2.7.4, Californium is vulnerable to a Denial of Service. Failing handshakes don't cleanup counters for throttling, causing the thresh