CVSS 3.1 Score 5.3 of 10 (medium)


Published Dec 27, 2023
Updated: Jan 11, 2024
CWE ID 787


CVE-2023-51074 is a cyber vulnerability found in the json-path v2.8.0 library, which can lead to a stack overflow through the Criteria.parse() method. The affected product is uFYNA0. The vulnerability has a base severity of MEDIUM with a base score of 5.3 according to the NVD rating. It has an exploitability score of 3.9 and requires no privileges or user interaction for exploitation. The attack vector is through the network, and it does not impact integrity or confidentiality. The vulnerability poses a potential danger to organizations as it could allow an attacker to execute arbitrary code or cause denial of service attacks. To remediate this vulnerability, it is recommended to update the json-path library to a version that fixes the issue when available.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-51074 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options