Vulnerabilities > CVE-2019-11835 - Out-of-bounds Write vulnerability in multiple products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
cJSON before 1.7.11 allows out-of-bounds access, related to multiline comments.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- https://github.com/DaveGamble/cJSON/compare/c69134d...93688cb
- https://github.com/DaveGamble/cJSON/compare/c69134d...93688cb
- https://github.com/DaveGamble/cJSON/issues/338
- https://github.com/DaveGamble/cJSON/issues/338
- https://github.com/DaveGamble/cJSON/releases/tag/v1.7.11
- https://github.com/DaveGamble/cJSON/releases/tag/v1.7.11
- https://www.oracle.com/security-alerts/cpuoct2020.html
- https://www.oracle.com/security-alerts/cpuoct2020.html