Cjson Project Cjson vulnerabilities
3 known vulnerabilities affecting cjson_project/cjson.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1LOW1
Vulnerabilities
Page 1 of 1
CVE-2023-53154MEDIUMCVSS 5.5fixed in 1.7.182025-05-23
CVE-2023-53154 [MEDIUM] CWE-125 CVE-2023-53154: parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing n
parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is called.
nvdosv
CVE-2023-26819LOWCVSS 2.9v1.7.152025-04-19
CVE-2023-26819 [LOW] CWE-440 CVE-2023-26819: cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [
cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}.
nvdosv
CVE-2024-31755HIGHCVSS 7.6v1.7.172024-04-26
CVE-2024-31755 [HIGH] CWE-476 CVE-2024-31755: cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the seco
cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the second parameter of function cJSON_SetValuestring at cJSON.c.
nvdosv