CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-32292

An issue was discovered in json-c from 20200420 (post 0.14 unreleased code) through 0.15-20200726. A stack-buffer-overflow exists in the auxiliary sample program json_parse which is located in the function parseit.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 36.1%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/json-c/json-c/issues/654
https://security.netapp.com/advisory/ntap-20230929-0010/
https://www.debian.org/security/2023/dsa-5486
https://github.com/json-c/json-c/issues/654
https://security.netapp.com/advisory/ntap-20230929-0010/
https://www.debian.org/security/2023/dsa-5486

Products affected by CVE-2021-32292

Json-C » Json-C » Version: 0.15-20200726

cpe:2.3:a:json-c:json-c:0.15-20200726
Netapp » Active Iq Unified Manager » Version: N/A

cpe:2.3:a:netapp:active_iq_unified_manager:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-32292

Products

Pricing

Contact Us