CVE-2023-53154 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is called.
Low CVSS: 2.9

CVE-2023-53154

parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is called.
Vendor
Cjson Project
Product
Cjson
CWE
CWE-125
Yayın Tarihi
2025-05-23 16:15:22
Güncelleme
2025-11-03 20:16:06
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-125 Cjson LOW Cjson Project 2025

Referanslar

https://github.com/DaveGamble/cJSON/compare/v1.7.17...v1.7.18 https://github.com/DaveGamble/cJSON/issues/800 https://lists.debian.org/debian-lts-announce/2025/06/msg00014.html https://github.com/DaveGamble/cJSON/issues/800