CVE-2023-5072
on github
Published
Severity
CVSS v3:
7.5 HIGH
CVSS v2:
N/A
Description
Denial of Service in JSON-Java versions up to and including 20230618. A bug in the parser means that an input string of modest size can lead to indefinite amounts of memory being used.
References
Configurations
CPE23 | Version Start | Version End | Exact Version |
---|---|---|---|
cpe:2.3:a:json-java_project:json-java:*:*:*:*:*:*:*:* | n/a | 20230618 (including) | * |