Description

hutool v5.8.21 was discovered to contain a buffer overflow via the component JSONUtil.parse().

Remediation

References

https://github.com/dromara/hutool/issues/3289

Related Vulnerabilities

CVE-2023-36665 Vulnerability in maven package org.webjars.npm:github-com-protobufjs-protobuf-js

CVE-2018-8815 Vulnerability in maven package org.opencms:opencms-core

CVE-2023-37962 Vulnerability in maven package io.jenkins.plugins:benchmark-evaluator

CVE-2020-7638 Vulnerability in npm package confinit

CVE-2023-26136 Vulnerability in npm package tough-cookie

Severity

High

Classification

CWE-120 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Exploit Issue Tracking Vendor Advisory