Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
NA
CVE-2024-27454
Published: 26/02/2024 Updated: 26/02/2024
Vulnerability Summary
orjson.loads in orjson prior to 3.9.15 does not limit recursion for deeply nested JSON documents.
Vulnerability Trend
References
https://github.com/ijl/orjson/issues/458
https://github.com/ijl/orjson/commit/b0e4d2c06ce06c6e63981bf0276e4b7c74e5845e
https://github.com/ijl/orjson/blob/master/CHANGELOG.md#3915
https://monicz.dev/CVE-2024-27454
https://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started