CVE-2020-12762high
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbuf_memappend.
References
https://github.com/json-c/json-c/pull/592
https://github.com/rsyslog/libfastjson/issues/161
https://usn.ubuntu.com/4360-1/
https://lists.debian.org/debian-lts-announce/2020/05/msg00032.html
https://lists.debian.org/debian-lts-announce/2020/05/msg00034.html
https://usn.ubuntu.com/4360-4/
https://security.gentoo.org/glsa/202006-13
https://lists.debian.org/debian-lts-announce/2020/07/msg00031.html
Details
Source: MITRE
Published: 2020-05-09
Updated: 2021-05-21
Type: CWE-787
Risk Information
CVSS v2
Base Score: 6.8
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 8.6
Severity: MEDIUM
CVSS v3
Base Score: 7.8
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 1.8
Severity: HIGH
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:json-c_project:json-c:*:*:*:*:*:*:*:* versions up to 0.14 (inclusive)
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 149782 | IBM MQ 9.1 LTS / 9.2 < 9.2.0.1 LTS / 9.2 < 9.2.1 CD RCE (6382922) | Nessus | Misc. | high |
| 146206 | pfSense 2.4.x < 2.4.5-p1 Multiple Vulnerabilities | Nessus | Firewalls | high |
| 141647 | EulerOS Virtualization 3.0.2.2 : json-c (EulerOS-SA-2020-2189) | Nessus | Huawei Local Security Checks | high |
| 140851 | EulerOS 2.0 SP3 : json-c (EulerOS-SA-2020-2084) | Nessus | Huawei Local Security Checks | high |
| 140355 | EulerOS Virtualization for ARM 64 3.0.2.0 : json-c (EulerOS-SA-2020-1985) | Nessus | Huawei Local Security Checks | high |
| 139342 | Debian DSA-4741-1 : json-c - security update | Nessus | Debian Local Security Checks | high |
| 139209 | Debian DLA-2301-1 : json-c security update | Nessus | Debian Local Security Checks | high |
| 138054 | Amazon Linux AMI : json-c (ALAS-2020-1381) | Nessus | Amazon Linux Local Security Checks | high |
| 138044 | Amazon Linux 2 : json-c (ALAS-2020-1442) | Nessus | Amazon Linux Local Security Checks | high |
| 137952 | EulerOS Virtualization 3.0.6.0 : json-c (EulerOS-SA-2020-1733) | Nessus | Huawei Local Security Checks | high |
| 137812 | EulerOS Virtualization for ARM 64 3.0.6.0 : json-c (EulerOS-SA-2020-1705) | Nessus | Huawei Local Security Checks | high |
| 137522 | EulerOS 2.0 SP2 : json-c (EulerOS-SA-2020-1680) | Nessus | Huawei Local Security Checks | high |
| 137450 | GLSA-202006-13 : json-c: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
| 137320 | Photon OS 1.0: Json PHSA-2020-1.0-0298 | Nessus | PhotonOS Local Security Checks | high |
| 137192 | Photon OS 2.0: Json PHSA-2020-2.0-0249 | Nessus | PhotonOS Local Security Checks | high |
| 137023 | EulerOS 2.0 SP5 : json-c (EulerOS-SA-2020-1605) | Nessus | Huawei Local Security Checks | high |
| 136984 | Debian DLA-2228-2 : json-c regression update | Nessus | Debian Local Security Checks | high |
| 136964 | Ubuntu 16.04 LTS / 18.04 LTS / 19.10 / 20.04 : json-c vulnerability (USN-4360-4) | Nessus | Ubuntu Local Security Checks | high |
| 136936 | Fedora 31 : json-c (2020-7eb7eac270) | Nessus | Fedora Local Security Checks | high |
| 136860 | EulerOS 2.0 SP8 : json-c (EulerOS-SA-2020-1582) | Nessus | Huawei Local Security Checks | high |
| 136841 | Fedora 30 : json-c (2020-847ad856ab) | Nessus | Fedora Local Security Checks | high |
| 136663 | Ubuntu 16.04 LTS / 18.04 LTS / 19.10 / 20.04 : json-c vulnerability (USN-4360-1) | Nessus | Ubuntu Local Security Checks | high |
| 136635 | FreeBSD : json-c -- integer overflow and out-of-bounds write via a large JSON file (abc3ef37-95d4-11ea-9004-25fadb81abf4) | Nessus | FreeBSD Local Security Checks | high |