Lucene search
K

49 matches found

UbuntuCve
UbuntuCve
added 2026/03/12 6:16 p.m.8 views

CVE-2026-32141

flatted is a circular JSON parser. Prior to 3.4.0, flatted's parse function uses a recursive revive phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow...

7.5CVSS7.2AI score0.00777EPSS
Exploits1References1
OSV
OSV
added 2026/03/12 6:16 p.m.3 views

UBUNTU-CVE-2026-32141

flatted is a circular JSON parser. Prior to 3.4.0, flatted's parse function uses a recursive revive phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow...

7.5CVSS5.8AI score0.00777EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/12 6:8 p.m.12 views

CVE-2026-32141

flatted is a circular JSON parser. Prior to 3.4.0, flatted's parse function uses a recursive revive phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow...

7.5CVSS5.8AI score0.00777EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/12 6:8 p.m.2 views

CVE-2026-32141 flatted: Unbounded recursion DoS in parse() revive phase

flatted is a circular JSON parser. Prior to 3.4.0, flatted's parse function uses a recursive revive phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow...

7.5CVSS5.9AI score0.00777EPSS
Exploits1References3
CVE
CVE
added 2026/03/12 6:8 p.m.33 views

CVE-2026-32141

The CVE concerns the flatted library (circular JSON parser). Before version 3.4.0, flatted.parse() uses a recursive revive() phase to resolve circular references; crafted payloads with deeply nested or self-referential $ indices can cause unbounded recursion, leading to a stack overflow that cras...

7.5CVSS5.8AI score0.00777EPSS
Exploits1References11Affected Software1
Debian CVE
Debian CVE
added 2026/03/12 6:8 p.m.4 views

CVE-2026-32141

flatted is a circular JSON parser. Prior to 3.4.0, flatted's parse function uses a recursive revive phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow...

7.5CVSS7.5AI score0.00777EPSS
Exploits1
Cvelist
Cvelist
added 2026/03/12 6:8 p.m.30 views

CVE-2026-32141 flatted: Unbounded recursion DoS in parse() revive phase

flatted is a circular JSON parser. Prior to 3.4.0, flatted's parse function uses a recursive revive phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow...

7.5CVSS0.00777EPSS
Exploits1References3
OSV
OSV
added 2026/03/12 6:8 p.m.7 views

CVE-2026-32141 flatted: Unbounded recursion DoS in parse() revive phase

flatted is a circular JSON parser. Prior to 3.4.0, flatted's parse function uses a recursive revive phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow...

7.5CVSS5.9AI score0.00777EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.7 views

flatted 安全漏洞

Flatted is a lightweight and fast cycle-based JSON parser developed by Andrea Giammarchi. Versions of Flatted prior to 3.4.0 contained a security vulnerability. This vulnerability stemmed from the recursive depth of the parse function when handling specially crafted payloads, which could lead to ...

7.5CVSS7.2AI score0.00777EPSS
Exploits1References4
Rows per page
Query Builder