Описание
Deserialization of Untrusted Data in com.jsoniter:jsoniter
Withdrawn
was withdrawn by its CNA. Further investigation showed that it was not a security issue.
Original Description
All versions of package com.jsoniter:jsoniter are vulnerable to Deserialization of Untrusted Data via malicious JSON strings. This may lead to a Denial of Service, and in certain cases, code execution.
Пакеты
Наименование
com.jsoniter:jsoniter
maven
Затронутые версииВерсия исправления
<= 0.9.23
Отсутствует
Связанные уязвимости
nvd
больше 4 лет назад
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none