CVE-2025-57052Out-of-bounds Read in Cjson

CWE-125Out-of-bounds ReadCWE-129Improper Validation of Array Index10 documents9 sources
Severity
9.8CRITICALNVD
EPSS
0.2%
top 57.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Davegamble CjsonPaloalto Pan-os
Timeline
PublishedSep 3
Latest updateApr 8

Description

cJSON 1.5.0 through 1.7.18 allows out-of-bounds access via the decode_array_index_from_pointer function in cJSON_Utils.c, allowing remote attackers to bypass array bounds checking and access restricted data via malformed JSON pointer strings containing alphanumeric characters.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

NVDdavegamble/cjson1.5.01.7.18
Palo Altopaloalto/pan-os

🔴Vulnerability Details

4
OSV
cjson vulnerabilities2026-01-23
CVEList
CVE-2025-57052: cJSON 12025-09-03
GHSA
GHSA-98j5-4649-rfv2: cJSON 12025-09-03
OSV
CVE-2025-57052: cJSON 12025-09-03

📋Vendor Advisories

5
Palo Alto
PAN-SA-2026-0006 Informational Bulletin: Impact assessment of OSS CVEs in PAN-OS2026-04-08
Ubuntu
cJSON vulnerabilities2026-01-23
Microsoft
cJSON 1.5.0 through 1.7.18 allows out-of-bounds access via the decode_array_index_from_pointer function in cJSON_Utils.c, allowing remote attackers to bypass array bounds checking and access restricte2025-09-09
Red Hat
cJSON: out-of-bounds access in decode_array_index_from_pointer() in cJSON_Utils.c via crafted JSON pointer strings2025-09-03
Debian
CVE-2025-57052: cjson - cJSON 1.5.0 through 1.7.18 allows out-of-bounds access via the decode_array_inde...2025
CVE-2025-57052 — Out-of-bounds Read in Davegamble Cjson | cvebase