Jsonparser CVEs and Security Vulnerabilities

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2026-32285	2 Buger, Jsonparser Project	2 Jsonparser, Jsonparser	2026-04-21	7.5 High
The Delete function fails to properly validate offsets when processing malformed JSON input. This can lead to a negative slice index and a runtime panic, allowing a denial of service attack.
CVE-2020-35381	3 Fedoraproject, Jsonparser Project, Redhat	3 Fedora, Jsonparser, Acm	2024-11-21	7.5 High
jsonparser 1.0.0 allows attackers to cause a denial of service (panic: runtime error: slice bounds out of range) via a GET call.
CVE-2020-10675	3 Fedoraproject, Jsonparser Project, Redhat	3 Fedora, Jsonparser, Acm	2024-11-21	7.5 High
The Library API in buger jsonparser through 2019-12-04 allows attackers to cause a denial of service (infinite loop) via a Delete call.

Page 1 of 1.