Published: 13/12/2022 Updated: 30/01/2023

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 0

A stack overflow in Jettison before v1.5.2 allows malicious users to cause a Denial of Service (DoS) via crafted JSON data.

Vulnerable Product	Search on Vulmon	Subscribe to Product
jettison project jettison
debian debian linux 10.0
debian debian linux 11.0

Several flaws have been discovered in libjettison-java, a collection of StAX parsers and writers for JSON Specially crafted user input may cause a denial of service via out-of-memory or stack overflow errors For the stable distribution (bullseye), these problems have been fixed in version 153-1~deb11u1 We recommend that you upgrade your libjet ...

A stack overflow in Jettison before v152 allows attackers to cause a Denial of Service (DoS) via crafted JSON data (CVE-2022-45685) Jettison before v152 was discovered to contain a stack overflow via the map parameter This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string (CVE-2022-45693) ...

CWE-787 https://github.com/jettison-json/jettison/issues/54 https://lists.debian.org/debian-lts-announce/2022/12/msg00045.html https://www.debian.org/security/2023/dsa-5312 https://nvd.nist.gov https://www.debian.org/security/2023/dsa-5312

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-45685

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect