Lucene search

GoogleOSV:CVE-2020-35381

HistoryDec 15, 2020 - 9:15 p.m.

CVE-2020-35381

2020-12-1521:15:15

Google

osv.dev

6.9 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

58.9%

jsonparser 1.0.0 allows attackers to cause a denial of service (panic: runtime error: slice bounds out of range) via a GET call.

CPENameOperatorVersion
jsonparsereq1.0.0

CPE	Name	Operator	Version
	jsonparser	eq	1.0.0

References

github.com/buger/jsonparser/issues/219

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/27EA7OGCELV7QFAGVIHODHWKMKGFVIUZ/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LJO5N7YTDEUSTKYTNA372CE6VHCZJWUG/