Vulnerabilities > Json Smart Project

DATE CVE VULNERABILITY TITLE RISK
2023-03-22 CVE-2023-1370 Uncontrolled Recursion vulnerability in Json-Smart Project Json-Smart 2.4.9
[Json-smart](https://netplex.github.io/json-smart/) is a performance focused, JSON processor lib. When reaching a ‘[‘ or ‘{‘ character in the JSON input, the code parses an array or an object respectively. It was discovered that the code does not have any limit to the nesting of such arrays or objects.
network
low complexity
json-smart-project CWE-674
7.5
2021-06-01 CVE-2021-31684 Out-of-bounds Write vulnerability in multiple products
A vulnerability was discovered in the indexOf function of JSONParserByteArray in JSON Smart versions 1.3 and 2.4 which causes a denial of service (DOS) via a crafted web request.
network
low complexity
json-smart-project oracle CWE-787
5.0
2021-02-23 CVE-2021-27568 Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products
An issue was discovered in netplex json-smart-v1 through 2015-10-23 and json-smart-v2 through 2.4.
network
high complexity
json-smart-project oracle CWE-754
5.9