CVE-2018-1000215
First published: Mon Aug 20 2018(Updated: )
Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of Service (DoS). This attack appear to be exploitable via If the attacker can force the data to be printed and the system is in low memory it can force a leak of memory. This vulnerability appears to have been fixed in 1.7.7.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cjson Project Cjson | <=1.7.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-1000215?
CVE-2018-1000215 is a vulnerability in the cJSON library that can result in Denial of Service (DoS) due to a memory leak issue.
How does CVE-2018-1000215 impact my system?
CVE-2018-1000215 can be exploited by an attacker to force a leak of memory, resulting in a Denial of Service (DoS) condition if the system is in low memory.
What software is affected by CVE-2018-1000215?
The cJSON library versions 1.7.6 and earlier, developed by Cjson Project, are affected by CVE-2018-1000215.
What is the severity of CVE-2018-1000215?
CVE-2018-1000215 has a severity rating of 7.5 (High).
Is there a fix available for CVE-2018-1000215?
Yes, upgrading to a version later than 1.7.6 of the cJSON library resolves the vulnerability.
- collector/nvd-index
- agent/severity
- agent/author
- agent/type
- agent/weakness
- agent/references
- agent/tags
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/cjson project
- canonical/cjson project cjson
- version/cjson project cjson/1.7.6