CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-1010239

DaveGamble/cJSON cJSON 1.7.8 is affected by: Improper Check for Unusual or Exceptional Conditions. The impact is: Null dereference, so attack can cause denial of service. The component is: cJSON_GetObjectItemCaseSensitive() function. The attack vector is: crafted json file. The fixed version is: 1.7.9 and later.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.4%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2019-1010239

Cjson Project » Cjson » Version: 1.7.8

cpe:2.3:a:cjson_project:cjson:1.7.8
Oracle » Timesten In-Memory Database » Version: N/A

cpe:2.3:a:oracle:timesten_in-memory_database:-
Oracle » Timesten In-Memory Database » Version: 11.2.2.8.27

cpe:2.3:a:oracle:timesten_in-memory_database:11.2.2.8.27
Oracle » Timesten In-Memory Database » Version: 11.2.2.8.49

cpe:2.3:a:oracle:timesten_in-memory_database:11.2.2.8.49
Oracle » Timesten In-Memory Database » Version: 18.1.2.1.0

cpe:2.3:a:oracle:timesten_in-memory_database:18.1.2.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-1010239

Products

Pricing

Contact Us