Vulnerabilities > Jettison Project

DATE CVE VULNERABILITY TITLE RISK
2023-03-22 CVE-2023-1436 Uncontrolled Recursion vulnerability in Jettison Project Jettison
An infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements.
network
low complexity
jettison-project CWE-674
7.5
7.5
2022-12-13 CVE-2022-45685 Out-of-bounds Write vulnerability in multiple products
A stack overflow in Jettison before v1.5.2 allows attackers to cause a Denial of Service (DoS) via crafted JSON data.
network
low complexity
jettison-project debian CWE-787
7.5
7.5
2022-12-13 CVE-2022-45693 Out-of-bounds Write vulnerability in multiple products
Jettison before v1.5.2 was discovered to contain a stack overflow via the map parameter.
network
low complexity
jettison-project debian CWE-787
7.5
7.5
2022-09-16 CVE-2022-40149 Out-of-bounds Write vulnerability in multiple products
Those using Jettison to parse untrusted XML or JSON data may be vulnerable to Denial of Service attacks (DOS).
network
low complexity
jettison-project debian CWE-787
7.5
7.5
2022-09-16 CVE-2022-40150 Uncontrolled Recursion vulnerability in multiple products
Those using Jettison to parse untrusted XML or JSON data may be vulnerable to Denial of Service attacks (DOS).
network
low complexity
jettison-project debian CWE-674
7.5
7.5