Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2024/01/16 12:0 a.m.5 views

CVE-2023-49351

A stack-based buffer overflow vulnerability in /bin/webs binary in Edimax BR6478AC V2 firmware veraion v1.23 allows attackers to overwrite other values located on the stack due to an incorrect use of the strcpy function...

9.7AI score0.0057EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/01/23 12:0 a.m.46 views

RHEL 8 : Red Hat OpenStack Platform 16.1.9 (python-ujson) (RHSA-2022:8864)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:8864 advisory. UltraJSON is an ultra fast JSON encoder and decoder Security Fixes: improper decoding of escaped surrogate characters may lead to string...

7.5CVSS7.3AI score0.02283EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2022/12/07 7:19 p.m.6 views

python-ujson: improper decoding of escaped surrogate characters may lead to string corruption, key confusion or value overwriting

UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Affected versions were found to improperly decode certain characters. JSON strings that contain escaped surrogate characters not part of a proper surrogate pair were decoded incorrectly. Besides corrupti...

7.5CVSS7.3AI score0.02283EPSS
Exploits1References5
OSV
OSV
added 2022/07/05 9:6 p.m.38 views

GHSA-WPQR-JCPX-745R Incorrect handling of invalid surrogate pair characters

Impact What kind of vulnerability is it? Who is impacted? Anyone parsing JSON from an untrusted source is vulnerable. JSON strings that contain escaped surrogate characters not part of a proper surrogate pair were decoded incorrectly. Besides corrupting strings, this allowed for potential key...

7.5CVSS7.4AI score0.02283EPSS
Exploits1References6
AlpineLinux
AlpineLinux
added 2022/07/05 5:35 p.m.26 views

CVE-2022-31116

UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Affected versions were found to improperly decode certain characters. JSON strings that contain escaped surrogate characters not part of a proper surrogate pair were decoded incorrectly. Besides corrupti...

7.5CVSS7.5AI score0.02283EPSS
Exploits1
Rows per page
Query Builder