Vulnerability Details CVE-2022-45494
Buffer overflow vulnerability in function json_parse_object in sheredom json.h before commit 0825301a07cbf51653882bf2b153cc81fdadf41 (November 14, 2022) allows attackers to code arbitrary code and gain escalated privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 13.5%
CVSS Severity
CVSS v3 Score 7.8
References
- https://github.com/hyrathon/trophies/security/advisories/GHSA-wvpq-p7pp-cj6m
- https://github.com/sheredom/json.h
- https://github.com/sheredom/json.h/issues/93
- https://github.com/sheredom/json.h/issues/97
- https://github.com/hyrathon/trophies/security/advisories/GHSA-wvpq-p7pp-cj6m
- https://github.com/sheredom/json.h
- https://github.com/sheredom/json.h/issues/93
- https://github.com/sheredom/json.h/issues/97
Products affected by CVE-2022-45494
-
cpe:2.3:a:json.h_project:json.h:-
-
cpe:2.3:a:json.h_project:json.h:2022-10-06
-
cpe:2.3:a:json.h_project:json.h:2022-10-07
-
cpe:2.3:a:json.h_project:json.h:2022-10-11