Vulnerabilities > Ultrajson Project

DATE CVE VULNERABILITY TITLE RISK
2022-07-05 CVE-2022-31116 Always-Incorrect Control Flow Implementation vulnerability in multiple products
UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+.
network
low complexity
ultrajson-project fedoraproject CWE-670
7.5
2022-07-05 CVE-2022-31117 Double Free vulnerability in multiple products
UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+.
network
high complexity
ultrajson-project fedoraproject CWE-415
5.9
2022-01-01 CVE-2021-45958 Out-of-bounds Write vulnerability in multiple products
UltraJSON (aka ujson) through 5.1.0 has a stack-based buffer overflow in Buffer_AppendIndentUnchecked (called from encode).
5.5