7 matches found
JSON-java: parser confusion leads to OOM
A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...
JSON-java: parser confusion leads to OOM
A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...
ai.api.libai.speech:libai-speech-gcp (>=1.4.9 <=1.6.12), ai.apiverse:apipulse (>='1.0.3' <=1.0.20) +18203 more potentially affected by CVE-2023-5072 via org.json:json (>=20070829 <=20230618)
org.json:json MAVEN version =20070829, =1.4.9, ='1.0.3', =1.4.2, =1.4.2, =1.4.2, =1.4.2, =1.4.2, =0.5.0, =0.5.0, =0.5.0, =0.5.8, =0.5.0, =0.5.7, =0.5.0, =0.8.7 and more Source cves: CVE-2023-5072 Source advisory: OSV:GHSA-4JQ9-2XHW-JPX7...
PT-2023-35790 · Org.Json · Org.Json
Name of the Vulnerable Software and Affected Versions: org.json affected versions not specified Description: The issue is related to a security exception in the org.json library. The crash occurs in the JSONArray.writeTo function, which is called by JSONStringer.value and JSONStringer.peek...
ai.api.libai.speech:libai-speech-gcp (>=1.4.9 <=1.6.12), ai.apiverse:apipulse (>='1.0.3' <=1.0.20) +17591 more potentially affected by CVE-2022-45688 via org.json:json (>=20070829 <=20220924)
org.json:json MAVEN version =20070829, =1.4.9, ='1.0.3', =1.4.2, =1.4.2, =1.4.2, =1.4.2, =1.4.2, =0.5.0, =0.5.0, =0.5.0, =0.5.8, =0.5.0, =0.5.7, =0.5.0, =0.8.7 and more Source cves: CVE-2022-45688 Source advisory: OSV:GHSA-3VQJ-43W4-2Q58...
GHSA-3VQJ-43W4-2Q58 json stack overflow vulnerability
A stack overflow in the XML.toJSONObject component of hutool-json v5.8.10 and org.json:json before version 20230227 allows attackers to cause a Denial of Service DoS via crafted JSON or XML data...
PT-2022-6900
Name of the Vulnerable Software and Affected Versions hutool-json version 5.8.10 org.json:json versions prior to 20230227 Bitbucket Data Center and Server versions 7.17.0 through 8.12.0 Description A stack overflow in the XML.toJSONObject component allows attackers to cause a Denial of Service Do...