CVE-2024-57699

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Feb 5, 2025

Updated: Feb 6, 2025

CWE ID 674

Summary

CVE-2024-57699 is a newly disclosed vulnerability in Netplex Json-smart versions 2.5.0 through 2.5.1. A maliciously crafted JSON input, containing an excessive number of opening curly braces, can induce a stack exhaustion. This issue stems from an incomplete resolution of CVE-2023-1370, resulting in a Denial of Service (DoS) vulnerability. Attackers can exploit this flaw to cause the affected system to crash, rendering it unavailable to users. This vulnerability poses a risk to organizations relying on affected Json-smart versions for their network operations.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/2T_rBQ
https://www.cve.org/CVERecord?id=CVE-2024-57699
https://nvd.nist.gov/vuln/detail/CVE-2024-57699

Back to Vulnerability Database

CVE-2024-57699

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations