CVE-2023-5072

Published October 12th, 2023

View on NVD ↗

CVSS v3

7.5

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

Denial of Service in JSON-Java versions up to and including 20230618. A bug in the parser means that an input string of modest size can lead to indefinite amounts of memory being used.

stleary/JSON-java

A reference implementation of a JSON package in Java.

GitHub

4.71K