CVE-2020-36325

Опубликовано: 26 апр. 2021

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

An issue was discovered in Jansson through 2.13.1. Due to a parsing error in json_loads, there's an out-of-bounds read-access bug. NOTE: the vendor reports that this only occurs when a programmer fails to follow the API specification

Релиз	Статус	Примечание
bionic	not-affected
devel	not-affected
esm-infra-legacy/trusty	not-affected	disputed
esm-infra/bionic	not-affected
esm-infra/focal	not-affected
esm-infra/xenial	not-affected
focal	not-affected
groovy	not-affected
hirsute	not-affected
jammy	not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 49%

0.00257

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2020-36325

CVSS3: 7.5

redhat

больше 5 лет назад

CVE-2020-36325

CVSS3: 7.5

nvd

почти 5 лет назад

CVE-2020-36325

CVSS3: 7.5

msrc

около 4 лет назад

Описание отсутствует

CVE-2020-36325

CVSS3: 7.5

debian

почти 5 лет назад

An issue was discovered in Jansson through 2.13.1. Due to a parsing er ...

GHSA-6p5j-2wf2-jfc6

CVSS3: 7.5

github

больше 3 лет назад

An issue was discovered in Jansson through 2.13.1. Due to a parsing error in json_loads, there's an out-of-bounds read-access bug.

EPSS

Процентиль: 49%

0.00257

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2020-36325

Описание

Пакет jansson

Ссылки на источники

Связанные уязвимости