Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
NA
CVE-2024-27454
Published: 26/02/2024 Updated: 26/02/2024
Vulnerability Summary
orjson.loads in orjson prior to 3.9.15 does not limit recursion for deeply nested JSON documents.
Vulnerability Trend
References
https://github.com/ijl/orjson/issues/458
https://github.com/ijl/orjson/commit/b0e4d2c06ce06c6e63981bf0276e4b7c74e5845e
https://github.com/ijl/orjson/blob/master/CHANGELOG.md#3915
https://monicz.dev/CVE-2024-27454
https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started