CVE-2024-47855 | JSON-lib up to 3.0.x Comment String util/JSONTokener.java Privilege Escalation

Inserito da Angelo Barbosa | Ott 4, 2024 | CVE

A vulnerability was found in JSON-lib up to 3.0.x. It has been rated as problematic. Affected by this issue is some unknown functionality of the file util/JSONTokener.java of the component Comment String Handler. The manipulation leads to Privilege Escalation.

This vulnerability is handled as CVE-2024-47855. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47855 | JSON-lib up to 3.0.x Comment String util/JSONTokener.java Privilege Escalation

Post correlati

CVE-2024-43317 | Metagauss User Registration Team RegistrationMagic Plugin up to 6.0.1.0 on WordPress cross site scripting

CVE-2024-36477 | Linux Kernel up to 6.6.32/6.9.3 tpm_tis_spi out-of-bounds (1547183852dc/de13c56f9947/195aba96b854)

CVE-2024-1272 | TNB Mobile Solutions Cockpit Software up to 0.251.0 sensitive information in source

CVE-2023-48708 | CodeIgniter4 Shield up to 1.0.0-beta.7 Login log file