Описание
Buffer overflow vulnerability in function json_parse_number in sheredom json.h before commit 0825301a07cbf51653882bf2b153cc81fdadf41 (November 14, 2022) allows attackers to code arbitrary code and gain escalated privileges.
Ссылки
- Third Party Advisory
- Issue TrackingThird Party Advisory
- Third Party Advisory
- Issue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2022-11-14 (исключая)
cpe:2.3:a:json.h_project:json.h:*:*:*:*:*:*:*:*
EPSS
Процентиль: 16%
0.0005
Низкий
7.8 High
CVSS3
Дефекты
CWE-787
EPSS
Процентиль: 16%
0.0005
Низкий
7.8 High
CVSS3
Дефекты
CWE-787