Denial of Service (DoS) in JSON-Java in versions prior to 20231013. A bug in the parser means that an input string of modest size can lead to indefinite amounts of memory being used.
HIGH Vulnerable Package issue exists @ org.json:json in branch refs/heads/master
Description
Denial of Service (DoS) in JSON-Java in versions prior to 20231013. A bug in the parser means that an input string of modest size can lead to indefinite amounts of memory being used.
HIGH Vulnerable Package issue exists @ org.json:json in branch refs/heads/master
Vulnerability ID: CVE-2023-5072
Package Name: org.json:json
Severity: HIGH
CVSS Score: 7.5
Publish Date: 2023-10-12T06:16:00
Current Package Version: 20131018
Remediation Upgrade Recommendation: 20231013
Link To SCA
Reference – NVD link