CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

65 matches found

Debian CVE•added 2020/12/15 8:14 p.m.•19 views

CVE-2020-35381

jsonparser 1.0.0 allows attackers to cause a denial of service panic: runtime error: slice bounds out of range via a GET call...

7.8CVSS7.3AI score0.00243EPSS

Exploits1

CVE•added 2020/12/15 8:14 p.m.•73 views

CVE-2020-35381

CVE-2020-35381 affects github.com/buger/jsonparser v1.0.0, where improper bounds checking can trigger a panic (slice bounds out of range) during JSON parsing via a GET request, leading to denial of service. Related advisories (GHSA-8VRW-M3J9-J27C; OSV GO-2021-0057) confirm a DoS vulnerability wit...

7.8CVSS7.1AI score0.00243EPSS

Exploits1References3Affected Software1

CNNVD•added 2020/12/15 12:0 a.m.•1 views

Buger Jsonparser Security Vulnerability

Buger Jsonparser is a Go-based codebase for interacting with data in json format by Buger's individual developers. A security vulnerability exists in jsonparser 1.0.0, which can be exploited to cause a denial of service via a GET call...

7.8CVSS7.1AI score0.00243EPSS

Exploits1References4

Positive Technologies•added 2020/12/15 12:0 a.m.•1 views

PT-2020-17320 · Unknown · Jsonparser

Name of the Vulnerable Software and Affected Versions: jsonparser versions 1.0.0 through 1.1.0 Description: The issue allows attackers to cause a denial of service via a GET call due to improper bounds checking in jsonparser. Maliciously crafted JSON objects can cause an out-of-bounds panic,...

7.8CVSS7.2AI score0.00243EPSS

Exploits1References18

RedhatCVE•added 2020/10/28 12:56 p.m.•18 views

CVE-2020-10675

A flaw was found in golang-github-buger-jsonparser. The Library API in buger jsonparser through 2019-12-04 allows attackers to cause a denial of service infinite loop via a delete call. The highest threat from this vulnerability is to system availability...

7.5CVSS4.2AI score0.00275EPSS

Exploits1References4

OpenVAS•added 2020/04/30 12:0 a.m.•45 views

Fedora: Security Advisory for golang-github-buger-jsonparser (FEDORA-2020-39852a8ef8)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.5AI score0.00275EPSS

Exploits1References2

Fedora•added 2020/04/25 2:31 a.m.•20 views

[SECURITY] Fedora 32 Update: golang-github-buger-jsonparser-0-0.9.20200406gitf7e751e.fc32

Alternative JSON parser for Go. It does not require you to know the structure of the payload eg. create structs, and allows accessing fields by providing the path to them. It is up to 10 times faster than standard encoding/json package depending on payload s ize and usage, allocates no memory...

7.5CVSS4.5AI score0.00275EPSS

Exploits1

OpenVAS•added 2020/04/19 12:0 a.m.•22 views

Fedora: Security Advisory for golang-github-buger-jsonparser (FEDORA-2020-97e8a67945)

7.5CVSS7.5AI score0.00275EPSS

Exploits1References2

Tenable Nessus•added 2020/04/16 12:0 a.m.•41 views

Fedora 31 : golang-github-buger-jsonparser (2020-97e8a67945)

Multiple bug fixes, including a fix for CVE-2020-10675 . Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

7.5CVSS7.2AI score0.00275EPSS

Exploits1References2

Fedora•added 2020/04/15 8:34 p.m.•28 views

[SECURITY] Fedora 31 Update: golang-github-buger-jsonparser-0-0.8.20200406gitf7e751e.fc31

7.5CVSS4.5AI score0.00275EPSS

Exploits1

Veracode•added 2020/03/20 6:11 a.m.•24 views

Denial Of Service (DoS)

github.com/buger/jsonparser is vulnerable to denial of service. A call to function Delete may cause infinite loop due to inadequate validation for special characters...

7.5CVSS3.6AI score0.00275EPSS

Exploits1References5Affected Software1