This page lists publicly disclosed CVE vulnerabilities affecting gjson_project gjson (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2021-42836 | GJSON before 1.9.3 allows a ReDoS (regular expression denial of service) attack. | [email protected] | 7.5 | 0.16% | 2021-10-22 | 2024-11-21 |
| CVE-2020-36067 | GJSON <=v1.6.5 allows attackers to cause a denial of service (panic: runtime error: slice bounds out of range) via a crafted GET call. | [email protected] | 7.5 | 0.47% | 2021-01-05 | 2024-11-21 |
| CVE-2020-36066 | GJSON <1.6.5 allows attackers to cause a denial of service (remote) via crafted JSON. | [email protected] | 7.5 | 0.20% | 2021-01-05 | 2024-11-21 |
| CVE-2020-35380 | GJSON before 1.6.4 allows attackers to cause a denial of service via crafted JSON. | [email protected] | 7.5 | 0.47% | 2020-12-15 | 2024-11-21 |