Tencent Rapidjson vulnerabilities
2 known vulnerabilities affecting tencent/rapidjson.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2024-38517HIGHCVSS 7.8≤ 1.1.02024-07-09
CVE-2024-38517 [HIGH] CWE-191 CVE-2024-38517: Tencent RapidJSON is vulnerable to privilege escalation due to an integer underflow in the `GenericR
Tencent RapidJSON is vulnerable to privilege escalation due to an integer underflow in the `GenericReader::ParseNumber()` function of `include/rapidjson/reader.h` when parsing JSON text from a stream. An attacker needs to send the victim a crafted file which needs to be opened; this triggers the integer underflow vulnerability (when the file is parsed
nvdosv
CVE-2024-39684HIGHCVSS 7.8≤ 1.1.02024-07-09
CVE-2024-39684 [HIGH] CWE-190 CVE-2024-39684: Tencent RapidJSON is vulnerable to privilege escalation due to an integer overflow in the `GenericRe
Tencent RapidJSON is vulnerable to privilege escalation due to an integer overflow in the `GenericReader::ParseNumber()` function of `include/rapidjson/reader.h` when parsing JSON text from a stream. An attacker needs to send the victim a crafted file which needs to be opened; this triggers the integer overflow vulnerability (when the file is parsed),
nvd