Lucene search
K

82 matches found

OSV
OSV
added 2021/01/05 9:15 p.m.9 views

UBUNTU-CVE-2020-36066

GJSON 1.6.5 allows attackers to cause a denial of service remote via crafted JSON...

7.5CVSS7.1AI score0.0182EPSS
Exploits1References4
CVE
CVE
added 2021/01/05 8:41 p.m.81 views

CVE-2020-36066

The CVE-2020-36066 issue affects the Go package tidwall/gjson (versions earlier than 1.6.5). The vulnerability is a remote denial of service caused by processing a specially crafted JSON input, as described in the connected OSV/GHSA entries. No exploit details are provided in the documents, and t...

7.5CVSS7.2AI score0.0182EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/01/05 8:41 p.m.28 views

CVE-2020-36066

GJSON 1.6.5 allows attackers to cause a denial of service remote via crafted JSON...

7.5CVSS7.3AI score0.0182EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2021/01/05 8:41 p.m.15 views

CVE-2020-36066

GJSON 1.6.5 allows attackers to cause a denial of service remote via crafted JSON...

7.5CVSS7.3AI score0.0182EPSS
Exploits1
Cvelist
Cvelist
added 2021/01/05 8:41 p.m.34 views

CVE-2020-36067

GJSON =v1.6.5 allows attackers to cause a denial of service panic: runtime error: slice bounds out of range via a crafted GET call...

7.5CVSS7.2AI score0.01387EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2021/01/05 8:41 p.m.29 views

CVE-2020-36067

GJSON =v1.6.5 allows attackers to cause a denial of service panic: runtime error: slice bounds out of range via a crafted GET call...

7.5CVSS7.2AI score0.01387EPSS
Exploits0
CVE
CVE
added 2021/01/05 8:41 p.m.67 views

CVE-2020-36067

CVE-2020-36067 affects the GJSON package (tidwall/gjson), where versions

7.5CVSS7.1AI score0.01387EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2021/01/05 12:0 a.m.5 views

Tidwall Gjson 安全漏洞

GJSON is a Go package that provides a fast and easy way to get values from json documents. A denial of service vulnerability exists in GJSON versions prior to 1.6.5. An attacker can exploit this vulnerability to cause a denial of service via specially crafted JSON...

7.5CVSS7.1AI score0.0182EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2021/01/05 12:0 a.m.4 views

PT-2021-3184 · Gjson · Gjson

Name of the Vulnerable Software and Affected Versions: GJSON versions prior to 1.6.5 Description: The issue is related to an uncontrolled resource consumption in the GJSON library, which can be exploited by a remote attacker using a specially crafted JSON request to cause a denial of service. A...

7.5CVSS7.3AI score0.0182EPSS
Exploits1References17
CNNVD
CNNVD
added 2021/01/05 12:0 a.m.6 views

Tidwall Gjson 输入验证错误漏洞

GJSON is a Go package that provides a fast and easy way to get values from json documents. A denial of service vulnerability exists in GJSON 1.6.5 and earlier versions. An attacker can exploit this vulnerability to cause a denial of service via a specially crafted GET call...

7.5CVSS7.1AI score0.01387EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2021/01/05 12:0 a.m.2 views

PT-2021-3192 · Gjson · Gjson

Name of the Vulnerable Software and Affected Versions: GJSON versions 1.6.5 and earlier GJSON version 1.6.5 Description: The issue allows attackers to cause a denial of service via a crafted GET call, resulting in a panic due to a runtime error, specifically a slice bounds out of range error. Thi...

7.5CVSS7.1AI score0.01387EPSS
Exploits0References15
OSV
OSV
added 2020/12/15 9:15 p.m.14 views

CVE-2020-35380

GJSON before 1.6.4 allows attackers to cause a denial of service via crafted JSON...

7.5CVSS6.6AI score
Exploits0References1
NVD
NVD
added 2020/12/15 9:15 p.m.36 views

CVE-2020-35380

GJSON before 1.6.4 allows attackers to cause a denial of service via crafted JSON...

7.5CVSS7.7AI score0.01662EPSS
Exploits1References1
OSV
OSV
added 2020/12/15 9:15 p.m.3 views

DEBIAN-CVE-2020-35380

GJSON before 1.6.4 allows attackers to cause a denial of service via crafted JSON...

7.5CVSS7.6AI score0.01662EPSS
Exploits1References1
Prion
Prion
added 2020/12/15 9:15 p.m.8 views

Design/Logic Flaw

GJSON before 1.6.4 allows attackers to cause a denial of service via crafted JSON...

5CVSS7.2AI score0.01662EPSS
Exploits1References1Affected Software1
UbuntuCve
UbuntuCve
added 2020/12/15 9:15 p.m.21 views

CVE-2020-35380

GJSON before 1.6.4 allows attackers to cause a denial of service via crafted JSON...

7.5CVSS7.1AI score0.01662EPSS
Exploits1References3
OSV
OSV
added 2020/12/15 9:15 p.m.2 views

UBUNTU-CVE-2020-35380

GJSON before 1.6.4 allows attackers to cause a denial of service via crafted JSON...

7.5CVSS7.3AI score0.01662EPSS
Exploits1References4
Cvelist
Cvelist
added 2020/12/15 8:12 p.m.34 views

CVE-2020-35380

GJSON before 1.6.4 allows attackers to cause a denial of service via crafted JSON...

7.3AI score0.01662EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2020/12/15 8:12 p.m.20 views

CVE-2020-35380

GJSON before 1.6.4 allows attackers to cause a denial of service via crafted JSON...

7.5CVSS7.3AI score0.01662EPSS
Exploits1
CVE
CVE
added 2020/12/15 8:12 p.m.73 views

CVE-2020-35380

GJSON (tidwall/gjson) vulnerable to denial of service due to crafted JSON; root cause is improper bounds checking leading to a panic. Affected versions are before 1.6.4; patch is to upgrade to 1.6.4 or newer. Impact is DoS (service disruption) without explicit remote code execution details in the...

7.5CVSS7.2AI score0.01662EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder