Vulnerabilities > Jansson Project

DATE CVE VULNERABILITY TITLE RISK
2021-04-26 CVE-2020-36325 Out-of-bounds Read vulnerability in Jansson Project Jansson
An issue was discovered in Jansson through 2.13.1.
network
low complexity
jansson-project CWE-125
7.5
2016-05-17 CVE-2016-4425 Improper Input Validation vulnerability in Jansson Project Jansson
Jansson 2.7 and earlier allows context-dependent attackers to cause a denial of service (deep recursion, stack consumption, and crash) via crafted JSON data.
network
low complexity
jansson-project CWE-20
5.0
2014-03-21 CVE-2013-6401 Cryptographic Issues vulnerability in Jansson Project Jansson
Jansson, possibly 2.4 and earlier, does not restrict the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted JSON document.
network
low complexity
jansson-project CWE-310
5.0