2 matches found
CVE-2021-31684
JSON Smart contains a denial-of-service vulnerability in the indexOf function of JSONParserByteArray, affecting versions 1.3 and 2.4. A crafted web request can trigger the issue. Public advisories note fixes in later releases (e.g., 1.3.3/2.4.5 and vendor-specific patches such as Debian 2.2-2+deb...
CVE-2021-27568
CVE-2021-27568 affects Netplex json-smart-v1 and json-smart-v2 (NumberFormatException uncaught), leading to potential denial of service or exposure of sensitive information when unhandled exceptions occur in the library. Connected IBM advisories confirm the vulnerability in IBM DOORS-related prod...