Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistVulnCheckCVELIST:CVE-2024-21907
HistoryJan 03, 2024 - 3:23 p.m.

CVE-2024-21907 Improper Handling of Exceptional Conditions in Newtonsoft.Json

2024-01-0315:23:04
CWE-755
VulnCheck
www.cve.org
3
cve-2024-21907
newtonsoft.json
exception handling
denial of service

EPSS

0.003

Percentile

69.8%

JSON

Newtonsoft.Json before version 13.0.1 is affected by a mishandling of exceptional conditions vulnerability. Crafted data that is passed to the JsonConvert.DeserializeObject method may trigger a StackOverflow exception resulting in denial of service. Depending on the usage of the library, an unauthenticated and remote attacker may be able to cause the denial of service condition.

CNA Affected

[
  {
    "collectionURL": "https://nuget.org/packages",
    "defaultStatus": "unaffected",
    "packageName": "Newtonsoft.Json",
    "versions": [
      {
        "lessThan": "13.0.1",
        "status": "affected",
        "version": "0",
        "versionType": "semver 2.0.0"
      }
    ]
  }
]

Related

vulnrichment 1
cve 1
osv 2
nvd 1
github 1
prion 1
ubuntucve 1
vulnrichment
vulnrichment
CVE-2024-21907 Improper Handling of Exceptional Conditions in Newtonsoft.Json
2024-01-03 15:23:04
cve
cve
CVE-2024-21907
2024-01-03 16:15:08
osv
osv
Improper Handling of Exceptional Conditions in Newtonsoft.Json
2022-06-22 15:08:47
CVE-2024-21907
2024-01-03 16:15:08
nvd
nvd
CVE-2024-21907
2024-01-03 16:15:08
github
github
Improper Handling of Exceptional Conditions in Newtonsoft.Json
2022-06-22 15:08:47
prion
prion
Race condition
2024-01-03 16:15:00
ubuntucve
ubuntucve
CVE-2024-21907
2024-01-03 00:00:00

EPSS

0.003

Percentile

69.8%

JSON
Related for CVELIST:CVE-2024-21907
vulnrichment1cve1osv2nvd1github1prion1ubuntucve1