Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES SCA (Software Composition Analysis)

CVE-2023-39685 Vulnerability in maven package org.hjson:hjson

Description

An issue in hjson-java up to v3.0.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted JSON string.

Remediation

References

https://github.com/hjson/hjson-java/issues/27

Related Vulnerabilities

CVE-2023-27479 Vulnerability in maven package org.xwiki.platform:xwiki-platform-panels-ui

CVE-2022-43405 Vulnerability in maven package io.jenkins.plugins:pipeline-groovy-lib

CVE-2023-31580 Vulnerability in maven package com.networknt:light-oauth2

CVE-2019-14517 Vulnerability in npm package editor.md

CVE-2023-32261 Vulnerability in maven package org.jenkins-ci.plugins:dimensionsscm

Severity

High

Classification

CWE-94 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Exploit Issue Tracking Vendor Advisory