CVE-2023-50471

Опубликовано: 14 дек. 2023

Источник: debian

EPSS Низкий

Описание

cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_InsertItemInArray at cJSON.c.

Пакет	Статус	Версия исправления	Релиз	Тип
cjson	fixed	1.7.17-1		package
cjson	fixed	1.7.15-1+deb12u1	bookworm	package
cjson	fixed	1.7.14-1+deb11u1	bullseye	package

https://github.com/DaveGamble/cJSON/issues/802
Fixed by: https://github.com/DaveGamble/cJSON/commit/60ff122ef5862d04b39b150541459e7f5e35add8

EPSS

Процентиль: 47%

0.00243

Низкий

CVE-2023-50471

CVSS3: 7.5

ubuntu

около 2 лет назад

cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_InsertItemInArray at cJSON.c.

CVE-2023-50471

CVSS3: 4

redhat

около 2 лет назад

cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_InsertItemInArray at cJSON.c.

CVE-2023-50471

CVSS3: 7.5

nvd

около 2 лет назад

cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_InsertItemInArray at cJSON.c.

CVE-2023-50471

CVSS3: 7.5

msrc

около 2 лет назад

cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_InsertItemInArray at cJSON.c.

GHSA-xgc4-4vwx-6v94

CVSS3: 7.5

github

около 2 лет назад

cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_InsertItemInArray at cJSON.c.

EPSS

Процентиль: 47%

0.00243

Низкий