hson-java vulnerable to denial of service

GHSA-94w5-rf69-2h6c · CVE-2023-39685

Published Sep 1, 2023 · Modified Feb 16, 2024

Description

An issue in hjson-java up to v3.0.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted JSON string to string a StringIndexOutOfBoundsException.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2023-39685
WEB https://github.com/hjson/hjson-java/issues/27
WEB https://github.com/hjson/hjson-java/commit/aff0b607929b4397d93dc0d029a56aeefb242602
PACKAGE https://github.com/hjson/hjson-java

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes