Vulnerabilities (CVE)

Filtered by vendor Json-c Project Subscribe

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 4 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-32292	1 Json-c Project	1 Json-c	2023-08-25	N/A	9.8 CRITICAL
An issue was discovered in json-c through 0.15-20200726. A stack-buffer-overflow exists in the function parseit located in json_parse.c. It allows an attacker to cause code Execution.
CVE-2020-12762	1 Json-c Project	1 Json-c	2021-05-21	6.8 MEDIUM	7.8 HIGH
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbuf_memappend.
CVE-2013-6370	2 Fedoraproject, Json-c Project	2 Fedora, Json-c	2017-08-29	5.0 MEDIUM	N/A
Buffer overflow in the printbuf APIs in json-c before 0.12 allows remote attackers to cause a denial of service via unspecified vectors.
CVE-2013-6371	2 Fedoraproject, Json-c Project	2 Fedora, Json-c	2017-08-29	5.0 MEDIUM	N/A
The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted JSON data, involving collisions.