Vulnerability Details : CVE-2024-47855
util/JSONTokener.java in JSON-lib before 3.1.0 mishandles an unbalanced comment string.
Products affected by CVE-2024-47855
Please log in to view affected product information.
Exploit prediction scoring system (EPSS) score for CVE-2024-47855
0.24%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 48 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2024-47855
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
5.3
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L |
3.9
|
1.4
|
134c704f-9b21-4f2e-91b3-4a467353bcc0 | 2024-11-07 |
References for CVE-2024-47855
-
https://github.com/kordamp/json-lib/commit/a0c4a0eae277130e22979cf307c95dec4005a78e
fix: Handle unbalanced comment string · kordamp/json-lib@a0c4a0e · GitHub
-
https://github.com/kordamp/json-lib/compare/v3.0.3...v3.1.0
Comparing v3.0.3...v3.1.0 · kordamp/json-lib · GitHub
Jump to