/
DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2024-57699

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-57699

CGA ID

CGA-vh8w-8rfv-rhq9

Severity

7.5

High

CVSS V3

Description

A security issue was found in Netplex Json-smart 2.5.0 through 2.5.1. When loading a specially crafted JSON input, containing a large number of ’{’, a stack exhaustion can be trigger, which could allow an attacker to cause a Denial of Service (DoS). This issue exists because of an incomplete fix for CVE-2023-1370.

References

  • https://images.chainguard.dev/security/CGA-vh8w-8rfv-rhq9
  • https://github.com/advisories/GHSA-pq2g-wx69-c263
  • https://nvd.nist.gov/vuln/detail/cve-2023-1370
  • https://github.com/TurtleLiu/Vul_PoC/tree/main/CVE-2024-57699
  • https://security-tracker.debian.org/tracker/CVE-2024-57699

Affected packages

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Products

Chainguard ContainersChainguard LibrariesChainguard VMs

Why Chainguard

Container Image SecurityVulnerability RemediationCompliance and Risk MitigationSoftware Supply Chain SecurityAI/ML Security

Customers

Customer StoriesChainguard Love

Company

About UsPricingContact UsOpen SourceCareersNewsroomLegal

Resources

Unchained BlogEventsTrust CenterDocumentation