CVE-2023-26819

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}.
References
Link Resource
https://github.com/boofish/json_bugs/tree/main/cjson Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:cjson_project:cjson:1.7.15:*:*:*:*:*:*:*

History

25 Jun 2025, 18:24

Type Values Removed Values Added
References () https://github.com/boofish/json_bugs/tree/main/cjson - () https://github.com/boofish/json_bugs/tree/main/cjson - Exploit, Third Party Advisory
CPE cpe:2.3:a:cjson_project:cjson:1.7.15:*:*:*:*:*:*:*
Summary
  • (es) cJSON 1.7.15 podría permitir una denegación de servicio a través de un documento JSON manipulado como {"a": true, "b": [ null,99999999999999999999999999999999999999999999912345678901234567]}.
First Time Cjson Project
Cjson Project cjson

19 Apr 2025, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-04-19 22:15

Updated : 2025-06-25 18:24


NVD link : CVE-2023-26819

Mitre link : CVE-2023-26819

CVE.ORG link : CVE-2023-26819


JSON object : View

Products Affected

cjson_project

  • cjson
CWE
CWE-440

Expected Behavior Violation