Lucene search
K

31 matches found

NVD
NVD
added 5 hours ago5 views

CVE-2026-9563

In Eclipse Parsson published Maven Central artifacts before version 1.1.8, the JSON parser did not enforce a default maximum on the number of characters consumed while parsing a single JSON document. Applications that parse attacker- controlled JSON can be forced to consume excessive CPU and memo...

7.5CVSS
Exploits0References5
Cvelist
Cvelist
added 6 hours ago7 views

CVE-2026-9563

In Eclipse Parsson published Maven Central artifacts before version 1.1.8, the JSON parser did not enforce a default maximum on the number of characters consumed while parsing a single JSON document. Applications that parse attacker- controlled JSON can be forced to consume excessive CPU and memo...

7.5CVSS
Exploits0References5
CVE
CVE
added 6 hours ago8 views

CVE-2026-9563

Eclipse Parsson JSON parser did not enforce a default maximum on parsed characters before 1.1.8, allowing DoS from attacker-controlled JSON via very large documents. The fixed version, Parsson 1.1.8, adds a configurable limit with a default of 15 million parser-consumed characters. Affected: Ecli...

7.5CVSS5.8AI score
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-2963

Malicious code in bioql PyPI...

7.5CVSS7AI score0.00764EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.13 views

EUVD-2024-2228

Malicious code in bioql PyPI...

8.6CVSS7.3AI score0.00588EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2024/07/17 10:24 p.m.46 views

CVE-2023-7272

A flaw was found in Eclipse Parsson. A document containing a large depth of nested objects may allow an attacker to cause a Java stack overflow exception, potentially leading to a denial of service...

6.8CVSS8.5AI score0.00588EPSS
Exploits1References4
OSV
OSV
added 2024/07/17 3:30 p.m.3 views

GHSA-2RWM-XV5J-777P Eclipse Parsson stack overflow when parsing deeply nested input

In Eclipse Parsson before 1.0.4 and 1.1.3, a document with a large depth of nested objects can allow an attacker to cause a Java stack overflow exception and denial of service. Eclipse Parsson allows processing e.g. parse, generate, transform and query JSON documents...

9.2CVSS7.1AI score0.00588EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2024/07/17 3:30 p.m.21 views

Eclipse Parsson stack overflow when parsing deeply nested input

In Eclipse Parsson before 1.0.4 and 1.1.3, a document with a large depth of nested objects can allow an attacker to cause a Java stack overflow exception and denial of service. Eclipse Parsson allows processing e.g. parse, generate, transform and query JSON documents...

8.6CVSS7.2AI score0.00588EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2024/07/17 3:15 p.m.36 views

CVE-2023-7272

In Eclipse Parsson before 1.0.4 and 1.1.3, a document with a large depth of nested objects can allow an attacker to cause a Java stack overflow exception and denial of service. Eclipse Parsson allows processing e.g. parse, generate, transform and query JSON documents...

8.6CVSS0.00588EPSS
Exploits1References1
OSV
OSV
added 2024/07/17 3:15 p.m.7 views

CVE-2023-7272

In Eclipse Parsson before 1.0.4 and 1.1.3, a document with a large depth of nested objects can allow an attacker to cause a Java stack overflow exception and denial of service. Eclipse Parsson allows processing e.g. parse, generate, transform and query JSON documents...

7.5CVSS8.5AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/17 3:0 p.m.22 views

CVE-2023-7272 Eclipse Parsson stack overflow with deeply nested objects

In Eclipse Parsson before 1.0.4 and 1.1.3, a document with a large depth of nested objects can allow an attacker to cause a Java stack overflow exception and denial of service. Eclipse Parsson allows processing e.g. parse, generate, transform and query JSON documents...

8.6CVSS7.2AI score0.00588EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/07/17 3:0 p.m.44 views

CVE-2023-7272 Eclipse Parsson stack overflow with deeply nested objects

In Eclipse Parsson before 1.0.4 and 1.1.3, a document with a large depth of nested objects can allow an attacker to cause a Java stack overflow exception and denial of service. Eclipse Parsson allows processing e.g. parse, generate, transform and query JSON documents...

8.6CVSS0.00588EPSS
Exploits1References1
CVE
CVE
added 2024/07/17 3:0 p.m.101 views

CVE-2023-7272

CVE-2023-7272 affects Eclipse Parsson prior to 1.0.4 and 1.1.3, where parsing JSON documents with a deeply nested structure can trigger a Java stack overflow and denial of service. The root cause is extremely nested object depth in JSON processing (parse/generate/transform/query). The CVSS base s...

8.6CVSS8.5AI score0.00588EPSS
Exploits1References1Affected Software1
RedHat Linux
RedHat Linux
added 2024/03/06 3:38 p.m.5 views

parsson: Denial of Service due to large number parsing

A flaw was found in Eclipse Parsson library when processing untrusted source content. This issue may cause a Denial of Service DoS due to built-in support for parsing numbers with a large scale, and some cases where processing a large number may take much more time than expected...

7.5CVSS7.1AI score0.00764EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2024/03/06 3:32 p.m.8 views

parsson: Denial of Service due to large number parsing

A flaw was found in Eclipse Parsson library when processing untrusted source content. This issue may cause a Denial of Service DoS due to built-in support for parsing numbers with a large scale, and some cases where processing a large number may take much more time than expected...

7.5CVSS7.1AI score0.00764EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2024/03/06 3:32 p.m.5 views

parsson: Denial of Service due to large number parsing

A flaw was found in Eclipse Parsson library when processing untrusted source content. This issue may cause a Denial of Service DoS due to built-in support for parsing numbers with a large scale, and some cases where processing a large number may take much more time than expected...

7.5CVSS7.1AI score0.00764EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/03/06 12:0 a.m.41 views

RHEL 8 : Red Hat JBoss Enterprise Application Platform 8.0.1 (RHSA-2024:1192)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1192 advisory. Red Hat JBoss Enterprise Application Platform 8 is a platform for Java applications based on the WildFly application runtime. This release o...

8.8CVSS7.4AI score0.93305EPSS
Exploits5References13
Tenable Nessus
Tenable Nessus
added 2024/03/06 12:0 a.m.54 views

RHEL 9 : Red Hat JBoss Enterprise Application Platform 8.0.1 (RHSA-2024:1193)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1193 advisory. Red Hat JBoss Enterprise Application Platform 8 is a platform for Java applications based on the WildFly application runtime. This release o...

8.8CVSS7.4AI score0.93305EPSS
Exploits5References13
IBM Security Bulletins
IBM Security Bulletins
added 2024/02/16 8:17 a.m.136 views

Security Bulletin: IBM Event Processing is vulnerable to a denial of service (CVE-2023-4043).

Summary IBM Event Processing is vulnerable to a denial of service due to parsson-1.1.2.jar component. Parsson provides an implementation of Jakarta JSON Processing Specification. Vulnerability Details CVEID:CVE-2023-4043 DESCRIPTION: Eclipse Parsson is vulnerable to a denial of service, caused by...

7.5CVSS6.4AI score0.00764EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2024/02/12 4:2 p.m.5 views

parsson: Denial of Service due to large number parsing

A flaw was found in Eclipse Parsson library when processing untrusted source content. This issue may cause a Denial of Service DoS due to built-in support for parsing numbers with a large scale, and some cases where processing a large number may take much more time than expected...

7.5CVSS7.1AI score0.00764EPSS
Exploits1References4
Rows per page
Query Builder