Vulnerabilities > CVE-2019-11834 - Out-of-bounds Write vulnerability in multiple products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
cJSON before 1.7.11 allows out-of-bounds access, related to \x00 in a string literal.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- https://github.com/DaveGamble/cJSON/compare/c69134d...93688cb
- https://github.com/DaveGamble/cJSON/compare/c69134d...93688cb
- https://github.com/DaveGamble/cJSON/issues/337
- https://github.com/DaveGamble/cJSON/issues/337
- https://github.com/DaveGamble/cJSON/releases/tag/v1.7.11
- https://github.com/DaveGamble/cJSON/releases/tag/v1.7.11
- https://www.oracle.com/security-alerts/cpuoct2020.html
- https://www.oracle.com/security-alerts/cpuoct2020.html