CVE-2022-45688 @ Maven-org.json:json-20131018 #94

SamHeadrickCx · 2023-03-14T20:18:46Z

Checkmarx (SCA): Vulnerable Package
Vulnerability: Read More about CVE-2022-45688
Checkmarx Project: SamHeadrickCx/easybuggy4sb
Repository URL: https://github.com/SamHeadrickCx/easybuggy4sb
Branch: master
Scan ID: 94cbf8fd-fbe8-49c7-9c55-da0658f9cbfc

A stack overflow in the "XML.toJSONObject" component of hutool-json allows attackers to cause a Denial of Service (DoS) via crafted JSON or XML data. This vulnerability affects "org.json:json" package versions prior to 20230227, and "cn.hutool:hutool-json" package versions prior to 5.8.25.

Additional Info
Attack vector: NETWORK
Attack complexity: LOW
Confidentiality impact: NONE
Availability impact: HIGH
Remediation Upgrade Recommendation: 20231013

SamHeadrickCx added SCA project:SamHeadrickCx/easybuggy4sb and removed CxSCA labels Jun 19, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVE-2022-45688 @ Maven-org.json:json-20131018 #94

CVE-2022-45688 @ Maven-org.json:json-20131018 #94

SamHeadrickCx commented Mar 14, 2023 •

edited

Loading

CVE-2022-45688 @ Maven-org.json:json-20131018 #94

CVE-2022-45688 @ Maven-org.json:json-20131018 #94

Comments

SamHeadrickCx commented Mar 14, 2023 • edited Loading

SamHeadrickCx commented Mar 14, 2023 •

edited

Loading