CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2025/05/22 10:52 p.m.•7 views

CVE-2022-45690

A stack overflow in the org.json.JSONTokener.nextValue::JSONTokener.java component of hutool-json v5.8.10 allows attackers to cause a Denial of Service DoS via crafted JSON or XML data...

7.5CVSS7AI score0.00299EPSS

Exploits1References1

Vulnrichment•added 2024/10/04 12:0 a.m.•10 views

CVE-2024-47855

util/JSONTokener.java in JSON-lib before 3.1.0 mishandles an unbalanced comment string...

7AI score0.04347EPSS

Exploits0References2

OSV•added 2023/02/15 1:1 p.m.•9 views

OSV-2023-60 Security exception in org.json.JSONTokener.nextValue

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=55978 Crash type: Security exception Crash state: org.json.JSONTokener.nextValue org.json.JSONTokener.readArray org.json.JSONTokener.nextToInternal...

7.1AI score

Exploits0References1

Veracode•added 2022/12/15 3:36 a.m.•26 views

Denial Of Service (DoS)

hutool-json is vulnerable to denial of service.The vulnerability is due to the JSONTokener.nextValue method causing a stack overflow which allows an attacker to cause an application crash via malicious input...

7.5CVSS7.4AI score0.00299EPSS

Exploits1References4Affected Software1

Github Security Blog•added 2022/12/13 3:30 p.m.•48 views

hutool-json stack overflow vulnerability

A stack overflow in the org.json.JSONTokener.nextValue::JSONTokener.java component of hutool-json v5.8.10 allows attackers to cause a Denial of Service DoS via crafted JSON or XML data...

7.5CVSS7.6AI score0.00299EPSS

Exploits1References5Affected Software1

OSV•added 2022/12/13 3:15 p.m.•26 views

CVE-2022-45690

A stack overflow in the org.json.JSONTokener.nextValue::JSONTokener.java component of hutool-json v5.8.10 allows attackers to cause a Denial of Service DoS via crafted JSON or XML data...

7.5CVSS7.6AI score

Exploits0References2

Vulnrichment•added 2022/12/13 12:0 a.m.•7 views

CVE-2022-45690

A stack overflow in the org.json.JSONTokener.nextValue::JSONTokener.java component of hutool-json v5.8.10 allows attackers to cause a Denial of Service DoS via crafted JSON or XML data...

7.8AI score0.00299EPSS

Exploits1References2

Cvelist•added 2022/12/13 12:0 a.m.•22 views

CVE-2022-45690

A stack overflow in the org.json.JSONTokener.nextValue::JSONTokener.java component of hutool-json v5.8.10 allows attackers to cause a Denial of Service DoS via crafted JSON or XML data...

7.8AI score0.00299EPSS

Exploits1References2

CVE•added 2022/12/13 12:0 a.m.•109 views

CVE-2022-45690

CVE-2022-45690: hutool-json v5.8.10 is affected by a stack overflow in org.json.JSONTokener.nextValue, enabling Denial of Service via crafted JSON or XML data. Connected sources corroborate the vulnerability and note a PoC exists. No remediation details are provided in the supplied documents.

7.5CVSS7.4AI score0.00299EPSS

Exploits1References2Affected Software1

GitLab Advisory Database•added 2022/12/13 12:0 a.m.•65 views

hutool-json stack overflow vulnerability

A stack overflow in the org.json.JSONTokener.nextValue::JSONTokener.java component of hutool-json v5.8.10 allows attackers to cause a Denial of Service DoS via crafted JSON or XML data...

7.5CVSS4.6AI score0.00299EPSS

Exploits1References5Affected Software1

Veracode•added 2022/09/19 1:11 p.m.•34 views

Denial Of Service (DoS)

Jettison is vulnerable to denial of service. The vulnerability exists in nextValue function in JSONTokener.java where the attacker may supply content that causes the parser to crash by out of memory if the parser is running on user supplied input...

7.5CVSS8.2AI score0.00065EPSS

Exploits0References6Affected Software5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by