28 matches found
EUVD-2023-2472
Malicious code in bioql PyPI...
EUVD-2023-1706
Malicious code in bioql PyPI...
CVE-2023-39685
An issue in hjson-java up to v3.0.0 allows attackers to cause a Denial of Service DoS via supplying a crafted JSON string...
CVE-2023-34620
An issue was discovered hjson thru 3.0.0 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies...
Security Bulletin: IBM Sterling Partner Engagement Manager is vulnerable to denial of service due to hjson-java (CVE-2023-39685)
Summary IBM Sterling Partner Engagement Manager uses hjson-java. This bulletin identifies the steps to take to address the vulnerability. Vulnerability Details CVEID:CVE-2023-39685 DESCRIPTION: Hjson hjson-java is vulnerable to a denial of service, caused by improper input validation. By sending ...
com.100shouhou.golddata:golddata-spider (>=1.1.1 <=1.1.4), com.buession.cas:buession-cas-audit (>=2.0.0 <=2.3.2) +704 more potentially affected by CVE-2023-39685 via org.hjson:hjson (>=1.0.0 <=3.0.0)
org.hjson:hjson MAVEN version =1.0.0, =1.1.1, =2.0.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.0.0, =1.1.0, =2.3.0, =1.1.0, =2.3.0, =2.3.2 and more Source cves: CVE-2023-39685 Source advisory: OSV:GHSA-94W5-RF69-2H6C...
hson-java vulnerable to denial of service
An issue in hjson-java up to v3.0.0 allows attackers to cause a Denial of Service DoS via supplying a crafted JSON string to string a StringIndexOutOfBoundsException...
GHSA-94W5-RF69-2H6C hson-java vulnerable to denial of service
An issue in hjson-java up to v3.0.0 allows attackers to cause a Denial of Service DoS via supplying a crafted JSON string to string a StringIndexOutOfBoundsException...
CVE-2023-39685
An issue in hjson-java up to v3.0.0 allows attackers to cause a Denial of Service DoS via supplying a crafted JSON string...
CVE-2023-39685
An issue in hjson-java up to v3.0.0 allows attackers to cause a Denial of Service DoS via supplying a crafted JSON string...
CVE-2023-39685
An issue in hjson-java up to v3.0.0 allows attackers to cause a Denial of Service DoS via supplying a crafted JSON string...
hjson-java Code Injection Vulnerability
hjson-java is Hjson open source a json, java conversion library . A security vulnerability exists in versions prior to hjson-java v3.0.0 that stems from allowing an attacker to cause a denial of service DoS by supplying a crafted JSON string...
CVE-2023-39685
An issue in hjson-java up to v3.0.0 allows attackers to cause a Denial of Service DoS via supplying a crafted JSON string...
CVE-2023-39685
CVE-2023-39685 affects hjson-java libraries up to v3.0.0, where improper input validation enables DoS via a crafted JSON string (CVSS 7.5, HIGH). Affected product: hjson-java; impact: denial of service; remediation: upgrade to a version later than 3.0.0. Multiple connected sources (Red Hat, IBM b...
CVE-2023-39685
An issue in hjson-java up to v3.0.0 allows attackers to cause a Denial of Service DoS via supplying a crafted JSON string...
PT-2023-27072 · Unknown · Hjson-Java
Name of the Vulnerable Software and Affected Versions: hjson-java versions up to v3.0.0 Description: The issue allows attackers to cause a Denial of Service DoS via supplying a crafted JSON string. This can lead to a StringIndexOutOfBoundsException. Recommendations: For hjson-java versions up to...
com.100shouhou.golddata:golddata-spider (>=1.1.1 <=1.1.4), com.buession.cas:buession-cas-audit (>=2.0.0 <=2.3.2) +704 more potentially affected by CVE-2023-34620 via org.hjson:hjson (>=1.0.0 <=3.0.0)
org.hjson:hjson MAVEN version =1.0.0, =1.1.1, =2.0.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.0.0, =1.1.0, =2.3.0, =1.1.0, =2.3.0, =2.3.2 and more Source cves: CVE-2023-34620 Source advisory: OSV:GHSA-5WFC-HJRC-GQ87...
GHSA-5WFC-HJRC-GQ87 hjson stack exhaustion vulnerability
An issue was discovered hjson through 3.0.0 allows attackers to cause a denial of service or other unspecified impacts via crafted objects that deeply nested structures...
hjson stack exhaustion vulnerability
An issue was discovered hjson through 3.0.0 allows attackers to cause a denial of service or other unspecified impacts via crafted objects that deeply nested structures...
CVE-2023-34620
An issue was discovered hjson thru 3.0.0 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies...