49 matches found
PT-2022-6900
Name of the Vulnerable Software and Affected Versions hutool-json version 5.8.10 org.json:json versions prior to 20230227 Bitbucket Data Center and Server versions 7.17.0 through 8.12.0 Description A stack overflow in the XML.toJSONObject component allows attackers to cause a Denial of Service Do...
hutool-json stack overflow vulnerability
A stack overflow in the XML.toJSONObject component of hutool-json v5.8.10 allows attackers to cause a Denial of Service DoS via crafted JSON or XML data...
CVE-2022-45690
A stack overflow in the org.json.JSONTokener.nextValue::JSONTokener.java component of hutool-json v5.8.10 allows attackers to cause a Denial of Service DoS via crafted JSON or XML data...
CVE-2022-45689
hutool-json v5.8.10 was discovered to contain an out of memory error...
CVE-2022-45688
A stack overflow in the XML.toJSONObject component of hutool-json v5.8.10 allows attackers to cause a Denial of Service DoS via crafted JSON or XML data...
CVE-2022-45690
A stack overflow in the org.json.JSONTokener.nextValue::JSONTokener.java component of hutool-json v5.8.10 allows attackers to cause a Denial of Service DoS via crafted JSON or XML data...
CVE-2022-45688
CVE-2022-45688 : Hutool-JSON's XML.toJSONObject has a stack-based overflow that can cause a DoS via crafted JSON/XML data. The connected documents confirm the vulnerability and impact (availability impact: HIGH) with no public exploit details or remediation/version fixes provided in the supplied ...
CVE-2022-45689
hutool-json v5.8.10 was discovered to contain an out of memory error...
cn.hutool:hutool-aop (>=4.0.0 <=4.1.11), cn.hutool:hutool-bloomFilter (>=4.0.0 <=4.1.11) +79 more potentially affected by CVE-2018-17297 via cn.hutool:hutool-core (>=4.0.0 <=4.1.11)
cn.hutool:hutool-core MAVEN version =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.1.11 and more Source cves: CVE-2018-17297 Source advisory: OSV:GHSA-RHQ2-2574-78MC...