exploitDog

GHSA-mq6h-jh39-cjg8

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The json.decode function in util/json.lua in Prosody 0.8.x before 0.8.1 might allow remote attackers to cause a denial of service (infinite loop) via invalid JSON data, as demonstrated by truncated data.

The json.decode function in util/json.lua in Prosody 0.8.x before 0.8.1 might allow remote attackers to cause a denial of service (infinite loop) via invalid JSON data, as demonstrated by truncated data.

Ссылки

EPSS

Процентиль: 67%

0.00535

Низкий

CVE ID

Связанные уязвимости

CVE-2011-2532

ubuntu

больше 14 лет назад

The json.decode function in util/json.lua in Prosody 0.8.x before 0.8.1 might allow remote attackers to cause a denial of service (infinite loop) via invalid JSON data, as demonstrated by truncated data.

CVE-2011-2532

nvd

больше 14 лет назад

The json.decode function in util/json.lua in Prosody 0.8.x before 0.8.1 might allow remote attackers to cause a denial of service (infinite loop) via invalid JSON data, as demonstrated by truncated data.

CVE-2011-2532

debian

больше 14 лет назад

The json.decode function in util/json.lua in Prosody 0.8.x before 0.8. ...

EPSS

Процентиль: 67%

0.00535

Низкий

CVE ID