CVE-2023-34615

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jun 14, 2023
Updated: Aug 16, 2023
CWE ID 787

Summary

CVE-2023-34615 is a newly identified vulnerability affecting JSONUtil versions up to 5.0. This issue allows attackers to trigger a denial of service or potentially other unspecified impacts by using crafted objects with cyclic dependencies. This can result in the JSONUtil component becoming unresponsive or crashing, leading to a denial of service condition. Attackers may exploit this vulnerability by sending malicious JSON data to the affected system. The precise nature and extent of the impact beyond a denial of service are currently unclear. It is recommended that users update to the latest version of JSONUtil to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share