Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2024-23337

jq is a command-line JSON processor. In versions up to and including 1.7.1, an integer overflow arises when assigning value using an index of 2147483647, the signed integer limit. This causes a denial of service. Commit de21386681c0df0104a99d9d09db23a9b2a78b1e contains a patch for the issue.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.2%
CVSS Severity
CVSS v3 Score 4.3
Products affected by CVE-2024-23337
  • Jqlang » Jq » Version: 1.0
    cpe:2.3:a:jqlang:jq:1.0
  • Jqlang » Jq » Version: 1.1
    cpe:2.3:a:jqlang:jq:1.1
  • Jqlang » Jq » Version: 1.2
    cpe:2.3:a:jqlang:jq:1.2
  • Jqlang » Jq » Version: 1.3
    cpe:2.3:a:jqlang:jq:1.3
  • Jqlang » Jq » Version: 1.4
    cpe:2.3:a:jqlang:jq:1.4
  • Jqlang » Jq » Version: 1.5
    cpe:2.3:a:jqlang:jq:1.5
  • Jqlang » Jq » Version: 1.6
    cpe:2.3:a:jqlang:jq:1.6
  • Jqlang » Jq » Version: 1.7
    cpe:2.3:a:jqlang:jq:1.7
  • Jqlang » Jq » Version: 1.7-37-g88f01a7
    cpe:2.3:a:jqlang:jq:1.7-37-g88f01a7
  • Jqlang » Jq » Version: 1.7.1
    cpe:2.3:a:jqlang:jq:1.7.1


Products
Pricing
Contact Us

Shodan ® - All rights reserved