CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

Mageia•added 2016/05/21 10:11 p.m.•28 views

Updated jansson packages fix CVE-2016-4425

Updated jansson packages fix security vulnerability: Gustavo Grieco discovered that jansson did not limit the recursion depth when parsing JSON arrays and objects. This could allow remote attackers to cause a denial of service crash via stack exhaustion, using crafted JSON data CVE-2016-4425...

7.5CVSS4.9AI score0.01894EPSS

Exploits0References2

UbuntuCve•added 2016/05/17 2:8 p.m.•24 views

CVE-2016-4425

Jansson 2.7 and earlier allows context-dependent attackers to cause a denial of service deep recursion, stack consumption, and crash via crafted JSON data...

7.5CVSS7.1AI score0.01894EPSS

Exploits0References3

OSV•added 2016/05/17 2:8 p.m.•2 views

UBUNTU-CVE-2016-4425

Jansson 2.7 and earlier allows context-dependent attackers to cause a denial of service deep recursion, stack consumption, and crash via crafted JSON data...

7.5CVSS5.8AI score0.01894EPSS

Exploits0References4

OSV•added 2016/05/06 5:59 p.m.•2 views

AZL-6505 CVE-2016-4074 affecting package jq for versions less than 1.5-6

The jvdumpterm function in jq 1.5 allows remote attackers to cause a denial of service stack consumption and application crash via a crafted JSON file. This issue has been fixed in jq 1.6rc1-r0...

7.5CVSS7.1AI score0.05333EPSS

Exploits1References1

NVD•added 2015/09/08 3:59 p.m.•31 views

CVE-2015-5250

The API server in OpenShift Origin 1.0.5 allows remote attackers to cause a denial of service master process crash via crafted JSON data...

4CVSS6.4AI score0.01935EPSS

Exploits0References3

Cvelist•added 2015/09/08 3:0 p.m.•35 views

CVE-2015-5250

The API server in OpenShift Origin 1.0.5 allows remote attackers to cause a denial of service master process crash via crafted JSON data...

6.4AI score0.01935EPSS

Exploits0References3

Amazon•added 2014/09/18 12:0 a.m.•43 views

Medium: json-c

Issue Overview: The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service CPU consumption via crafted JSON data, involving collisions. Buffer overflow in the printbuf APIs in json-c before 0.12 allows remote attackers to cause a denial of service...

5CVSS7AI score0.04474EPSS

Exploits1

RedHat Linux•added 2014/06/10 12:34 p.m.•5 views

json-c: hash collision DoS

The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service CPU consumption via crafted JSON data, involving collisions...

5CVSS5.8AI score0.03229EPSS

Exploits0References4

NVD•added 2014/04/22 1:6 p.m.•25 views

CVE-2013-6371

The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service CPU consumption via crafted JSON data, involving collisions...

5CVSS6.1AI score0.03229EPSS

Exploits0References8

CVE•added 2014/04/21 2:0 p.m.•72 views

CVE-2013-6371

CVE-2013-6371 affects json-c prior to 0.12. The issue is a hash collision denial-of-service in the JSON-C hash function used during string parsing, allowing an attacker to cause high CPU/DoS with crafted JSON data. Public advisories (Red Hat RHSA-2014:0703, Oracle/OpenSUSE/NASL/ Mandriva entries,...

5CVSS6.1AI score0.03229EPSS

Exploits0References8Affected Software1

Cvelist•added 2014/04/21 2:0 p.m.•26 views

CVE-2013-6371

The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service CPU consumption via crafted JSON data, involving collisions...

6AI score0.03229EPSS

Exploits0References8

Debian CVE•added 2014/04/21 2:0 p.m.•30 views

CVE-2013-6371

The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service CPU consumption via crafted JSON data, involving collisions...

5CVSS6.1AI score0.03229EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by