Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2022-31116
- EPSS 0.19%
- Veröffentlicht 05.07.2022 18:15:08
- Zuletzt bearbeitet 21.11.2024 07:03:55
UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Affected versions were found to improperly decode certain characters. JSON strings that contain escaped surrogate characters not part of a proper surrogate ...
5.9
CVE-2022-31117
- EPSS 0.15%
- Veröffentlicht 05.07.2022 18:15:08
- Zuletzt bearbeitet 21.11.2024 07:03:55
UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. In versions prior to 5.4.0 an error occurring while reallocating a buffer for string decoding can cause the buffer to get freed twice. Due to how UltraJSON ...
5.5
CVE-2021-45958
- EPSS 0.29%
- Veröffentlicht 01.01.2022 00:15:08
- Zuletzt bearbeitet 21.11.2024 06:33:22
UltraJSON (aka ujson) through 5.1.0 has a stack-based buffer overflow in Buffer_AppendIndentUnchecked (called from encode). Exploitation can, for example, use a large amount of indentation.
1