cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}.

Related CVEs

CVE-2023-26819

Key Information

GHSA ID

GHSA-whx8-2789-8w4w

Published

April 20, 2025 12:31 AM

Last Modified

April 20, 2025 12:31 AM

CVSS Score

2.5 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: September 10, 2025 6:31 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.