Vulnerabilities > Arduino Json Project > Arduino Json > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-06-22 | CVE-2015-4590 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arduino Json Project Arduino Json 4.4 The extractFrom function in Internals/QuotedString.cpp in Arduino JSON before 4.5 allows remote attackers to cause a denial of service (crash) via a JSON string with a \ (backslash) followed by a terminator, as demonstrated by "\\\0", which triggers a buffer overflow and over-read. | 5.0 |