Lucene search

K
prionPRIOn knowledge basePRION:CVE-2023-1370
HistoryMar 22, 2023 - 6:15 a.m.

Stack overflow

2023-03-2206:15:00
PRIOn knowledge base
www.prio-n.com
12
json-smart
json processor
limit
nested arrays
nested objects
stack overflow
software crash

AI Score

7.4

Confidence

High

EPSS

0.001

Percentile

43.2%

Json-smart is a performance focused, JSON processor lib. When reaching a ‘[‘ or ‘{‘ character in the JSON input, the code parses an array or an object respectively. It was discovered that the code does not have any limit to the nesting of such arrays or objects. Since the parsing of nested arrays and objects is done recursively, nesting too many of them can cause a stack exhaustion (stack overflow) and crash the software.

CPENameOperatorVersion
json-smarteq2.4.9