hutool-json stack overflow vulnerability
Moderate severity
GitHub Reviewed
Published
Dec 13, 2022
to the GitHub Advisory Database
•
Updated Jan 29, 2023
Description
Published by the National Vulnerability Database
Dec 13, 2022
Published to the GitHub Advisory Database
Dec 13, 2022
Reviewed
Dec 13, 2022
Last updated
Jan 29, 2023
A stack overflow in the org.json.JSONTokener.nextValue::JSONTokener.java component of hutool-json v5.8.10 allows attackers to cause a Denial of Service (DoS) via crafted JSON or XML data.
References