CVE-2023-26819

Опубликовано: 19 апр. 2025

Источник: nvd

CVSS3: 2.9

EPSS Низкий

Описание

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}.

Ссылки

https://github.com/boofish/json_bugs/tree/main/cjson
Exploit
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2025/06/msg00014.html

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cjson_project:cjson:1.7.15:*:*:*:*:*:*:*

EPSS

Процентиль: 12%

0.00039

Низкий

2.9 Low

CVSS3

Дефекты

CWE-440

Связанные уязвимости

CVE-2023-26819

CVSS3: 2.9

ubuntu

10 месяцев назад

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}.

CVE-2023-26819

CVSS3: 2.9

redhat

10 месяцев назад

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}.

CVE-2023-26819

CVSS3: 2.9

msrc

2 месяца назад

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}.

CVE-2023-26819

CVSS3: 2.9

debian

10 месяцев назад

cJSON 1.7.15 might allow a denial of service via a crafted JSON docume ...

GHSA-whx8-2789-8w4w

CVSS3: 2.9

github

10 месяцев назад

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}.

EPSS

Процентиль: 12%

0.00039

Низкий

2.9 Low

CVSS3

Дефекты

CWE-440