Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dave Gamble cJSON version 1.7.3 and earlier contains a CWE-416: Use After Free vulnerability in cJSON library that can result in Possible crash, corruption of data or even RCE. This attack appear to be exploitable via Depends on how application uses cJSON library. If application provides network interface then can be exploited over a network, otherwise just local.. This vulnerability appears to have been fixed in 1.7.4.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Dave Gamble cJSON 安全漏洞
Vulnerability Description
Dave Gamble cJSON是一款轻量级的JSON格式解析器。 Dave Gamble cJSON 1.7.3及之前版本的cJSON库中存在释放后重用漏洞。攻击者可利用该漏洞造成拒绝服务(崩溃),损坏数据,甚至远程执行代码。
CVSS Information
N/A
Vulnerability Type
N/A