Vulnerabilities > Cjson Project > Cjson
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-14 | CVE-2023-50471 | NULL Pointer Dereference vulnerability in Cjson Project Cjson 1.7.16 cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_InsertItemInArray at cJSON.c. | 7.5 |
| 2023-12-14 | CVE-2023-50472 | NULL Pointer Dereference vulnerability in Cjson Project Cjson 1.7.16 cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_SetValuestring at cJSON.c. | 7.5 |
| 2019-07-19 | CVE-2019-1010239 | NULL Pointer Dereference vulnerability in multiple products DaveGamble/cJSON cJSON 1.7.8 is affected by: Improper Check for Unusual or Exceptional Conditions. | 5.0 |
| 2019-05-09 | CVE-2019-11835 | Out-of-bounds Write vulnerability in multiple products cJSON before 1.7.11 allows out-of-bounds access, related to multiline comments. | 7.5 |
| 2019-05-09 | CVE-2019-11834 | Out-of-bounds Write vulnerability in multiple products cJSON before 1.7.11 allows out-of-bounds access, related to \x00 in a string literal. | 7.5 |
| 2019-04-29 | CVE-2016-10749 | Out-of-bounds Read vulnerability in Cjson Project Cjson parse_string in cJSON.c in cJSON before 2016-10-02 has a buffer over-read, as demonstrated by a string that begins with a " character and ends with a \ character. | 7.5 |
| 2018-08-20 | CVE-2018-1000217 | Use After Free vulnerability in Cjson Project Cjson Dave Gamble cJSON version 1.7.3 and earlier contains a CWE-416: Use After Free vulnerability in cJSON library that can result in Possible crash, corruption of data or even RCE. | 7.5 |
| 2018-08-20 | CVE-2018-1000216 | Double Free vulnerability in Cjson Project Cjson Dave Gamble cJSON version 1.7.2 and earlier contains a CWE-415: Double Free vulnerability in cJSON library that can result in Possible crash or RCE. | 6.8 |
| 2018-08-20 | CVE-2018-1000215 | Missing Release of Resource after Effective Lifetime vulnerability in Cjson Project Cjson Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of Service (DoS). | 5.0 |