Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

421 matches found

Cvelist
Cvelistadded 2025/05/23 12:0 a.m.8 views

CVE-2023-53154

parsestring in cJSON before 1.7.18 has a heap-based buffer over-read via "1":1, with no trailing newline if cJSONParseWithLength is called...

2.9CVSS0.00089EPSS
Exploits1References2
Debian CVE
Debian CVEadded 2025/05/23 12:0 a.m.7 views

CVE-2023-53154

parsestring in cJSON before 1.7.18 has a heap-based buffer over-read via "1":1, with no trailing newline if cJSONParseWithLength is called...

5.5CVSS4.8AI score0.00089EPSS
Exploits1
Positive Technologies
Positive Technologiesadded 2025/05/23 12:0 a.m.1 views

PT-2025-22802

Name of the Vulnerable Software and Affected Versions cJSON versions prior to 1.7.18 Description The issue is related to a heap-based buffer over-read in the parse string function of the cJSON library. This occurs when cJSON ParseWithLength is called with a JSON string that has no trailing newlin...

5.5CVSS5.9AI score0.00089EPSS
Exploits1References23
Vulnrichment
Vulnrichmentadded 2025/05/23 12:0 a.m.5 views

CVE-2023-53154

parsestring in cJSON before 1.7.18 has a heap-based buffer over-read via "1":1, with no trailing newline if cJSONParseWithLength is called...

2.9CVSS4AI score0.00089EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/22 1:13 p.m.3 views

CVE-2018-1000215

Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of Service DoS. This attack appear to be exploitable via If the attacker can force the data to be printed and the system is in low memory it can force a leak of memory. This...

7.5CVSS6.8AI score0.00464EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 10:10 a.m.7 views

CVE-2019-1010239

DaveGamble/cJSON cJSON 1.7.8 is affected by: Improper Check for Unusual or Exceptional Conditions. The impact is: Null dereference, so attack can cause denial of service. The component is: cJSONGetObjectItemCaseSensitive function. The attack vector is: crafted json file. The fixed version is: 1.7...

7.5CVSS6.9AI score0.00658EPSS
Exploits1References1
NVD
NVDadded 2025/04/19 10:15 p.m.14 views

CVE-2023-26819

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567...

2.9CVSS0.00052EPSS
Exploits1References2
OSV
OSVadded 2025/04/19 10:15 p.m.6 views

CVE-2023-26819

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567...

2.9CVSS6.8AI score
Exploits0References2
OSV
OSVadded 2025/04/19 10:15 p.m.1 views

UBUNTU-CVE-2023-26819

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567...

2.9CVSS5.8AI score0.00052EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/04/19 12:0 a.m.1 views

PT-2025-17394

Name of the Vulnerable Software and Affected Versions cJSON version 1.7.15 Description The issue might allow a denial of service via a crafted JSON document. For example, a document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567 could be used...

9.8CVSS5.8AI score0.00273EPSS
Exploits2References37
CVE
CVEadded 2025/04/19 12:0 a.m.68 views

CVE-2023-26819

CVE-2023-26819 affects the cJSON library (v1.7.15) and can cause a denial of service when parsing crafted JSON like {"a": true, "b": [null, 9999...}] with extremely large numbers. Public advisories (Ubuntu USN-7973-1; Debian DLA-4216) confirm vulnerable package versions and provide fixes in subse...

2.9CVSS6.9AI score0.00052EPSS
Exploits1References2Affected Software1
CNNVD
CNNVDadded 2025/04/19 12:0 a.m.1 views

cJSON 安全漏洞

cJSON is a lightweight, open source JSON parser from the individual developer Dave Gamble. A security vulnerability exists in cJSON version 1.7.15, which stems from a denial of service that can be caused when processing specially crafted JSON documents...

2.9CVSS4.3AI score0.00052EPSS
Exploits1References2
Cvelist
Cvelistadded 2025/04/19 12:0 a.m.12 views

CVE-2023-26819

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567...

2.9CVSS0.00052EPSS
Exploits1References1
Debian CVE
Debian CVEadded 2025/04/19 12:0 a.m.70 views

CVE-2023-26819

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567...

2.9CVSS4.4AI score0.00052EPSS
Exploits1
Vulnrichment
Vulnrichmentadded 2025/04/19 12:0 a.m.7 views

CVE-2023-26819

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567...

2.9CVSS3.9AI score0.00052EPSS
Exploits1References1
RedHat Linux
RedHat Linuxadded 2025/01/27 1:43 a.m.1 views

redis: heap overflow in the lua cjson and cmsgpack libraries

A heap-based buffer overflow flaw was found in Redis. This flaw allows a local authenticated attacker user or attacker to execute a specially crafted Lua script in Redis. This attack triggers a heap overflow in the cjson and cmsgpack libraries, resulting in heap corruption and potential remote co...

8.8CVSS7.8AI score0.45527EPSS
Exploits1References6
RedHat Linux
RedHat Linuxadded 2025/01/22 10:42 a.m.0 views

redis: heap overflow in the lua cjson and cmsgpack libraries

A heap-based buffer overflow flaw was found in Redis. This flaw allows a local authenticated attacker user or attacker to execute a specially crafted Lua script in Redis. This attack triggers a heap overflow in the cjson and cmsgpack libraries, resulting in heap corruption and potential remote co...

8.8CVSS7.8AI score0.45527EPSS
Exploits1References6
Tenable Nessus
Tenable Nessusadded 2025/01/22 12:0 a.m.15 views

Debian dla-3700 : libcjson-dev - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3700 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3700-1 [email protected] https://www.debian.org/lts/security/...

7.5CVSS6.3AI score0.00224EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2024/11/15 12:0 a.m.7 views

Fedora 41 : cjson (2024-82f3634c69)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-82f3634c69 advisory. Update to new upstream version closes rhbz2237124 Tenable has extracted the preceding description block directly from the Fedora security advisory...

7.6CVSS7.4AI score0.02498EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2024/11/14 12:0 a.m.11 views

Fedora 41 : cjson (2024-ef33631a3c)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-ef33631a3c advisory. Automatic update for cjson-1.7.17-1.fc41. Changelog Sun Apr 7 2024 Fabian Affolter - 1.7.17.-1 - Update to latest upstream version 1.7.17 closes rhbz2255953 ...

7.5CVSS6.2AI score0.00224EPSS
Exploits1References2
Rows per page
Query Builder