Medium
Apache SystemDS is vulnerable to a denial of service, caused by a CPU exhaustion in the termination condition of the for loop in the readExternal method. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to cause a denial of service.
Refer to Apache Website for patch, upgrade or suggested workaround information.