CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

170 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в json-smart

A vulnerability was discovered in the indexOf function of JSONParserByteArray in JSON Smart versions 1.3 and 2.4, which causes a denial of service DOS through a crafted web request...

7.5CVSS6.7AI score0.00108EPSS

Exploits1References1

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в json-smart

Json-smart is a performance-oriented JSON processor library. When encountering a '' or '' character in the JSON input, the code parses an array or an object respectively. It was discovered that the code has no limitations on the nesting of such arrays or objects. Since the parsing of nested array...

7.5CVSS6.8AI score0.00015EPSS

Exploits1References1

IBM Security Bulletins•added 2026/04/29 9:7 a.m.•2 views

Security Bulletin: IBM Engineering Lifecycle Management - Jazz Foundation is impacted by vulnerabilities in Json-smart

Summary A vulnerability has been identified in Json-smart library, which is used in IBM Engineering Lifecycle Management - Jazz Foundation. Vulnerability Details CVEID:CVE-2023-1370 DESCRIPTION:Json-smart is a performance focused, JSON processor lib. When reaching a ‘‘ or ‘‘ character in the JSON...

7.5CVSS6.3AI score0.00015EPSS

Exploits1Affected Software1

Atlassian•added 2026/04/20 2:22 a.m.•16 views

DoS (Denial of Service) net.minidev:json-smart Dependency in Jira Service Management Data Center

This High severity DoS Denial of Service vulnerability was introduced in versions 10.3.0, and 11.3.0 of Jira Service Management Data Center. This DoS Denial of Service vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H allows an unauthenticat...

7.5CVSS6.6AI score0.00015EPSS

Exploits1

Atlassian•added 2026/04/16 9:26 p.m.•17 views

DoS (Denial of Service) net.minidev:json-smart Dependency in Jira Software Data Center

This High severity DoS Denial of Service vulnerability was introduced in versions 9.12.1, 10.3.0, and 11.3.0 of Jira Software Data Center. This DoS Denial of Service vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H allows an unauthenticated...

7.5CVSS5.8AI score0.00015EPSS

Exploits1

Tenable Nessus•added 2026/03/31 12:0 a.m.•1 views

Atlassian Jira Service Management Data Center and Server 5.12.29 < 10.3.17 / 10.4.x < 11.3.3 (JSDSERVER-16510)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16510 advisory. - A security issue was found in Netplex Json-smart 2.5.0 through 2.5.1. When loading a specially craft...

7.5CVSS5.9AI score0.00058EPSS

Exploits1References2

Atlassian•added 2026/02/06 8:27 p.m.•16 views

DoS (Denial of Service) net.minidev:json-smart Dependency in Jira Service Management Data Center and Server

This High severity DoS Denial of Service vulnerability known as CVE-2024-57699 was introduced in versions 5.12.29, 5.13.0, 5.14.0, 5.15.2, 5.16.0, 5.17.0, 10.0.0, 10.1.1, 10.2.0, 10.3.0, 10.4.0, 10.5.0, 10.6.0, 10.7.1, 11.0.0, 11.1.0, 11.2.0, and 11.3.0 of Jira Service Management Data Center and...

7.5CVSS6.5AI score0.00058EPSS

Exploits0

Tenable Nessus•added 2026/01/23 12:0 a.m.•2 views

Oracle Business Intelligence Enterprise Edition (12.2.1.4) (January 2026 CPU)

The version of Oracle Business Intelligence Enterprise Edition 12.2.1.4 installed on the remote host is affected by multiple vulnerabilities as referenced in the January 2026 CPU advisory. - Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics component...

7.5CVSS6.8AI score0.00521EPSS

Exploits0References7

IBM Security Bulletins•added 2025/12/09 8:7 p.m.•11 views

Security Bulletin: IBM® Db2® federated server is affected by a vulnerability in json-smart 2.5.0 (CVE-2024-57699)

Summary IBM® Db2® federated server is vulnerable to a security issue that was found in Netplex Json-smart 2.5.0 through 2.5.1. When loading a specially crafted JSON input, containing a large number of '', a stack exhaustion can be triggered, which could allow an attacker to cause a Denial of...

7.5CVSS6.1AI score0.00058EPSS

Exploits0Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-1405

Malware in sbrugna...

5.9CVSS6.6AI score0.00698EPSS

Exploits1References22

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2022-0980

Malicious code in bioql PyPI...

7.5CVSS6.1AI score0.00108EPSS

Exploits1References12

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-53713

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00058EPSS

Exploits1References7

RedHat Linux•added 2025/08/01 5:42 p.m.•2 views

json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion)

A flaw was found in the json-smart package. This security flaw occurs when reaching a ‘‘ or ‘‘ character in the JSON input, and the code parses an array or an object, respectively. The 3PP does not have any limit to the nesting of such arrays or objects. Since nested arrays and objects are parsed...

7.5CVSS7.2AI score0.00015EPSS

Exploits1References6

RedHat Linux•added 2025/07/01 4:53 p.m.•2 views