Skip to main content

Yajl Ruby

2 CVEs product

Monthly

CVE-2022-24795 Ruby HIGH POC PATCH This Week

yajl-ruby is a C binding to the YAJL JSON parsing and generation library. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

RCE Buffer Overflow Heap Overflow Yajl Ruby
NVD GitHub
CVSS 3.1
7.5
EPSS
3.5%
CVE-2017-16516 Ruby HIGH POC PATCH This Week

In the yajl-ruby gem 1.3.0 for Ruby, when a crafted JSON file is supplied to Yajl::Parser.new.parse, the whole ruby process crashes with a SIGABRT in the yajl_string_decode function in yajl_encode.c. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Yajl Ruby Debian Linux
NVD GitHub
CVSS 3.1
7.5
EPSS
1.7%
EPSS 3% CVSS 7.5
HIGH POC PATCH This Week

yajl-ruby is a C binding to the YAJL JSON parsing and generation library. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

RCE Buffer Overflow Heap Overflow +1
NVD GitHub
EPSS 2% CVSS 7.5
HIGH POC PATCH This Week

In the yajl-ruby gem 1.3.0 for Ruby, when a crafted JSON file is supplied to Yajl::Parser.new.parse, the whole ruby process crashes with a SIGABRT in the yajl_string_decode function in yajl_encode.c. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Yajl Ruby Debian Linux
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy