CVE-2021-45958

Published January 1st, 2022

View on NVD ↗

CVSS v3

5.5

MEDIUM

CVSS v2

4.3

MEDIUM

Affected

PROJECTS

Description

UltraJSON (aka ujson) through 5.1.0 has a stack-based buffer overflow in Buffer_AppendIndentUnchecked (called from encode). Exploitation can, for example, use a large amount of indentation.

google/oss-fuzz-vulns

OSS-Fuzz vulnerabilities for OSV.

GitHub

180

ultrajson/ultrajson

Ultra fast JSON decoder and encoder written in C with Python bindings

GitHub

4.49K