Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentVulnCheckVULNRICHMENT:CVE-2024-21907
HistoryJan 03, 2024 - 3:23 p.m.

CVE-2024-21907 Improper Handling of Exceptional Conditions in Newtonsoft.Json

2024-01-0315:23:04
CWE-755
VulnCheck
github.com
2
cve-2024-21907
newtonsoft.json
exception vulnerability
stackoverflow
denial of service
unauthenticated attacker

AI Score

7.2

Confidence

High

EPSS

0.003

Percentile

69.8%

SSVC

Exploitation

poc

Automatable

yes

Technical Impact

partial

JSON

Newtonsoft.Json before version 13.0.1 is affected by a mishandling of exceptional conditions vulnerability. Crafted data that is passed to the JsonConvert.DeserializeObject method may trigger a StackOverflow exception resulting in denial of service. Depending on the usage of the library, an unauthenticated and remote attacker may be able to cause the denial of service condition.

Related

cve 1
osv 2
nvd 1
github 1
prion 1
ubuntucve 1
cvelist 1
cve
cve
CVE-2024-21907
2024-01-03 16:15:08
osv
osv
Improper Handling of Exceptional Conditions in Newtonsoft.Json
2022-06-22 15:08:47
CVE-2024-21907
2024-01-03 16:15:08
nvd
nvd
CVE-2024-21907
2024-01-03 16:15:08
github
github
Improper Handling of Exceptional Conditions in Newtonsoft.Json
2022-06-22 15:08:47
prion
prion
Race condition
2024-01-03 16:15:00
ubuntucve
ubuntucve
CVE-2024-21907
2024-01-03 00:00:00
cvelist
cvelist
CVE-2024-21907 Improper Handling of Exceptional Conditions in Newtonsoft.Json
2024-01-03 15:23:04

AI Score

7.2

Confidence

High

EPSS

0.003

Percentile

69.8%

SSVC

Exploitation

poc

Automatable

yes

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2024-21907
cve1osv2nvd1github1prion1ubuntucve1cvelist1