Cjson Project: >> Cjson >> 1.7.12 Security Vulnerabilities
parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is called.
CVSS Score
2.9
EPSS Score
0.0
Published
2025-05-23