Lucene search
+L

250 matches found

Veracode
Veracode
added 2023/09/13 6:34 a.m.22 views

Buffer Overflow

hutool is vulnerable to Buffer Overflow. The vulnerability is due to a lack of input validation in the jsonArray.add function. This can be exploited by an attacker who sends a specially crafted JSON object to trigger an OutOfMemoryError, potentially causing a crash or denial of service...

9.8CVSS6.7AI score0.00769EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/09/11 12:0 a.m.6 views

The vulnerability of the library for processing files and network operations, hutool-json, is related to writing beyond the buffer boundaries in memory. This allows a malicious actor to cause a service failure.

The vulnerability of the hutool-json library for file processing and network operations is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS7.4AI score0.00762EPSS
Exploits1References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/09/11 12:0 a.m.8 views

The vulnerability of the XML.toJSONObject component in the file and network operations library hutool-json allows a attacker to cause a service failure.

The vulnerability of the XML.toJSONObject component in the library for file processing and network operations in hutool-json is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS7AI score0.01181EPSS
Exploits5References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2023/09/11 12:0 a.m.8 views

The vulnerability in the `org.json.JSONTokener.nextValue::JSONTokener.java` component of the file and network operations handling library hutool-json, which allows a attacker to cause a service failure.

The vulnerability in the org.json.JSONTokener.nextValue::JSONTokener.java component of the file and network operations library hutool-json is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS7AI score0.00943EPSS
Exploits1References5Affected Software2
vulnersOsv
vulnersOsv
added 2023/09/09 12:30 a.m.12 views

club.mrxiao:express-java-common (>=1.0.0 <=1.0.2), club.mrxiao:express-java-jdl (>=1.0.0 <=1.0.2) +439 more potentially affected by CVE-2023-42278 via cn.hutool:hutool-json (>=4.0.0 <=5.8.21)

cn.hutool:hutool-json MAVEN version =4.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =2.0.3, =2.0.5, =2.0.1.B, =2.0.1.B, =2.0.1.B, =1.0.1, =1.0.3 and more Source cves: CVE-2023-42278 Source advisory: OSV:GHSA-RR66-QH5M-W6MX...

7.5CVSS7.1AI score0.00706EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2023/09/09 12:30 a.m.7 views

ai.foxpay.api:foxpay-sdk (>=1.0 <=1.1), ai.genauth:genauth-java-sdk (=3.1.11) +2280 more potentially affected by CVE-2023-42278 via cn.hutool:hutool-core (>=4.0.0 <=5.8.21)

cn.hutool:hutool-core MAVEN version =4.0.0, =1.0, =j8.2.2.0, =j8.2.2.0, =Finchley.SR2.SR1, =Finchley.SR4, =j8.2.2.0, =Finchley.SR2.SR1, =Finchley.SR2.SR1, =Finchley.SR4, =j8.2.2.0, =j8.2.2.0, =1.0.2, =1.0.4 and more Source cves: CVE-2023-42278 Source advisory: OSV:GHSA-RR66-QH5M-W6MX...

7.5CVSS7AI score0.00706EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2023/09/09 12:30 a.m.5 views

ai.foxpay.api:foxpay-sdk (>=1.0 <=1.1), ai.genauth:genauth-java-sdk (=3.1.11) +2280 more potentially affected by CVE-2023-42276 via cn.hutool:hutool-core (>=4.0.0 <=5.8.21)

cn.hutool:hutool-core MAVEN version =4.0.0, =1.0, =j8.2.2.0, =j8.2.2.0, =Finchley.SR2.SR1, =Finchley.SR4, =j8.2.2.0, =Finchley.SR2.SR1, =Finchley.SR2.SR1, =Finchley.SR4, =j8.2.2.0, =j8.2.2.0, =1.0.2, =1.0.4 and more Source cves: CVE-2023-42276 Source advisory: OSV:GHSA-RXGF-R843-G53H...

9.8CVSS7.2AI score0.00769EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2023/09/09 12:30 a.m.7 views

club.mrxiao:express-java-common (>=1.0.0 <=1.0.2), club.mrxiao:express-java-jdl (>=1.0.0 <=1.0.2) +439 more potentially affected by CVE-2023-42277 via cn.hutool:hutool-json (>=4.0.0 <=5.8.21)

cn.hutool:hutool-json MAVEN version =4.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =2.0.3, =2.0.5, =2.0.1.B, =2.0.1.B, =2.0.1.B, =1.0.1, =1.0.3 and more Source cves: CVE-2023-42277 Source advisory: OSV:GHSA-7P8C-CRFR-Q93P...

9.8CVSS7.2AI score0.00769EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2023/09/09 12:30 a.m.6 views

ai.foxpay.api:foxpay-sdk (>=1.0 <=1.1), ai.genauth:genauth-java-sdk (=3.1.11) +2280 more potentially affected by CVE-2023-42277 via cn.hutool:hutool-core (>=4.0.0 <=5.8.21)

cn.hutool:hutool-core MAVEN version =4.0.0, =1.0, =j8.2.2.0, =j8.2.2.0, =Finchley.SR2.SR1, =Finchley.SR4, =j8.2.2.0, =Finchley.SR2.SR1, =Finchley.SR2.SR1, =Finchley.SR4, =j8.2.2.0, =j8.2.2.0, =1.0.2, =1.0.4 and more Source cves: CVE-2023-42277 Source advisory: OSV:GHSA-7P8C-CRFR-Q93P...

9.8CVSS7.2AI score0.00769EPSS
Exploits1
OSV
OSV
added 2023/09/09 12:30 a.m.2 views

GHSA-RR66-QH5M-W6MX hutool Buffer Overflow vulnerability

hutool v5.8.21 was discovered to contain a buffer overflow via the component JSONUtil.parse...

7.5CVSS6.1AI score0.00706EPSS
Exploits1References4
vulnersOsv
vulnersOsv
added 2023/09/09 12:30 a.m.11 views

club.mrxiao:express-java-common (>=1.0.0 <=1.0.2), club.mrxiao:express-java-jdl (>=1.0.0 <=1.0.2) +439 more potentially affected by CVE-2023-42276 via cn.hutool:hutool-json (>=4.0.0 <=5.8.21)

cn.hutool:hutool-json MAVEN version =4.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =2.0.3, =2.0.5, =2.0.1.B, =2.0.1.B, =2.0.1.B, =1.0.1, =1.0.3 and more Source cves: CVE-2023-42276 Source advisory: OSV:GHSA-RXGF-R843-G53H...

9.8CVSS7.2AI score0.00769EPSS
Exploits1
OSV
OSV
added 2023/09/09 12:30 a.m.1 views

GHSA-7P8C-CRFR-Q93P hutool Buffer Overflow vulnerability

hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonObject.putByPath...

9.8CVSS6.1AI score0.00769EPSS
Exploits1References4
OSV
OSV
added 2023/09/09 12:30 a.m.4 views

GHSA-RXGF-R843-G53H hutool Buffer Overflow vulnerability

hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonArray...

9.8CVSS6.1AI score0.00769EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2023/09/09 12:30 a.m.34 views

hutool Buffer Overflow vulnerability

hutool v5.8.21 was discovered to contain a buffer overflow via the component JSONUtil.parse...

7.5CVSS7.6AI score0.00706EPSS
Exploits1References4Affected Software2
Github Security Blog
Github Security Blog
added 2023/09/09 12:30 a.m.22 views

hutool Buffer Overflow vulnerability

hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonArray...

9.8CVSS7.6AI score0.00769EPSS
Exploits1References4Affected Software2
Github Security Blog
Github Security Blog
added 2023/09/09 12:30 a.m.21 views

hutool Buffer Overflow vulnerability

hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonObject.putByPath...

9.8CVSS7.6AI score0.00769EPSS
Exploits1References4Affected Software2
GitLab Advisory Database
GitLab Advisory Database
added 2023/09/09 12:0 a.m.48 views

hutool Buffer Overflow vulnerability

hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonObject.putByPath...

9.8CVSS7.2AI score0.00769EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/09/09 12:0 a.m.53 views

hutool Buffer Overflow vulnerability

hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonObject.putByPath...

9.8CVSS7.6AI score0.00769EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/09/09 12:0 a.m.57 views

hutool Buffer Overflow vulnerability

hutool v5.8.21 was discovered to contain a buffer overflow via the component JSONUtil.parse...

7.5CVSS7.7AI score0.00706EPSS
Exploits1References5
GitLab Advisory Database
GitLab Advisory Database
added 2023/09/09 12:0 a.m.47 views

hutool Buffer Overflow vulnerability

hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonArray...

9.8CVSS7.6AI score0.00769EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder