Description

An issue was discovered in netplex json-smart-v1 through 2015-10-23 and json-smart-v2 through 2.4. An exception is thrown from a function, but it is not caught, as demonstrated by NumberFormatException. When it is not caught, it may cause programs using the library to crash or expose sensitive information.

Remediation

References

CVE-2021-27568

Related Vulnerabilities

Elgg Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3733)

WordPress Plugin WordPress Download Manager Remote Code Execution (2.7.4)

ClipBucket Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-7665)

WordPress Plugin WooCommerce Quick Reports Cross-Site Scripting (1.0.6)

PostgreSQL CVE-2022-41862 Vulnerability (CVE-2022-41862)

Severity

Medium

Classification

CVE-2021-27568 CWE-754 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities