CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

Tenable Nessus•added 2025/10/29 12:0 a.m.•4 views

Siemens SIMATIC and Ruggedcom ROX Devices Integer Overflow or Wraparound (CVE-2020-12762)

json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

7.8CVSS6.6AI score0.0028EPSS

Exploits1References9

RedHat Linux•added 2024/03/05 8:23 a.m.•1 views

libfastjson: integer overflow and out-of-bounds write via a large JSON file

A flaw was found in json-c. In printbufmemappend, certain crafted values can overflow the memory allowing an attacker to write past the memory boundary. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.8CVSS6.8AI score0.0028EPSS

Exploits1References4

RedHat Linux•added 2023/11/07 8:47 a.m.•1 views

libfastjson: integer overflow and out-of-bounds write via a large JSON file

7.8CVSS6.4AI score0.0028EPSS

Exploits1References4

Oracle linux•added 2021/11/16 12:0 a.m.•31 views

json-c security and bug fix update

0.13.1-2 - rebuild 1954436 0.13.1-1 - Fix CVE-2020-12762 out-of-bounds write via a large JSON file - Resolves: rhbz1835626...

7.8CVSS8AI score0.0028EPSS

Exploits1

Tenable Nessus•added 2021/11/11 12:0 a.m.•24 views

CentOS 8 : json-c (CESA-2021:4382)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2021:4382 advisory. - json-c: integer overflow and out-of-bounds write via a large JSON file CVE-2020-12762 Note that Nessus has not tested for this issue but has instead relied on...

7.8CVSS6.7AI score0.0028EPSS

Exploits1References2

Veracode•added 2020/08/06 9:35 p.m.•24 views

Arbitrary Code Execution

json-c is vulnerable to arbitrary code execution. The vulnerability exists through an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...

7.8CVSS5.5AI score0.0028EPSS

Exploits1References18Affected Software2

Tenable Nessus•added 2020/07/02 12:0 a.m.•22 views

Amazon Linux AMI : json-c (ALAS-2020-1381)

The version of json-c installed on the remote host is prior to 0.11-7.8. It is, therefore, affected by a vulnerability as referenced in the ALAS-2020-1381 advisory. json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...

7.8CVSS6.8AI score0.0028EPSS

Exploits1References3

Amazon•added 2020/06/26 12:0 a.m.•33 views

Medium: json-c

Issue Overview: json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend. CVE-2020-12762 Affected Packages: json-c Issue Correction: Run yum update json-c or yum update --advisory ALAS-2020-1381 to update your system. New...

7.8CVSS7.4AI score0.0028EPSS

Exploits1

Tenable Nessus•added 2020/05/26 12:0 a.m.•17 views

EulerOS 2.0 SP8 : json-c (EulerOS-SA-2020-1582)

According to the version of the json-c packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend.CVE-2020-12762 Note...

7.8CVSS6.8AI score0.0028EPSS

Exploits1References2

Tenable Nessus•added 2020/05/15 12:0 a.m.•52 views

FreeBSD : json-c -- integer overflow and out-of-bounds write via a large JSON file (abc3ef37-95d4-11ea-9004-25fadb81abf4)

Tobias Stockmann reports : I have discovered a way to trigger an out of boundary write while parsing a huge json file through a malicious input source. It can be triggered if an attacker has control over the input stream or if a huge load during filesystem operations can be triggered. C Tenable...

7.8CVSS6.7AI score0.0028EPSS

Exploits1References4