[Apiiro] Dynatrace testing · Critical Risk

**Discovered on:** Sep 16, 2025 21:18      

**Finding details**    
**Finding name:** Inefficient Algorithmic Complexity    
**Severity:** Medium    
**Sources:** Dynatrace      

**About this vulnerability**    
**Description:** Affected versions of this package are vulnerable to Inefficient Algorithmic Complexity involved in processing `[ExtensionData]` property data. An attacker can trigger denial of service by passing malicious JSON input to a model that uses this property.    
**Identifiers:**    
    - [CVE-2024-43485](https://nvd.nist.gov/vuln/detail/CVE-2024-43485)      

**CVSS v3.1.0:** 7.5    
**Exploit maturity:** No exploit maturity data      

**Affected assets**    
**Dependency:** System.Text.Json: 8.0.3      

**Repository:** WebGoat    
[View in Apiiro](https://app-staging.apiiro.com/profiles/repositories/eStWeiRM90qc0yCH505CNQ/risk/development?trigger=fff990f3b6dc2b9c6df71a888955e157&environmentId=431311fb6e694b8ab0a64ad0f2)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[Apiiro] Dynatrace testing · Critical Risk #3

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[Apiiro] Dynatrace testing · Critical Risk #3

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions