CVE-2023-42276: Buffer Overflow

Q: What is CVE-2023-42276?

CVE-2023-42276 is a vulnerability discovered in hutool v5.8.21, which allows for a buffer overflow via the component jsonArray.

Q: How severe is CVE-2023-42276?

CVE-2023-42276 has a severity rating of 9.8, which is classified as critical.

Q: Which software versions are affected by CVE-2023-42276?

CVE-2023-42276 affects hutool v5.8.21 in the hutool-json and hutool-core packages.

Q: Is there a fix available for CVE-2023-42276?

Yes, a fix is available for CVE-2023-42276. Please refer to the provided references for more information.

Q: Where can I find more information about CVE-2023-42276?

You can find more information about CVE-2023-42276 in the provided references.

Published Sep 8, 2023

Updated

hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonArray.

Other sources

hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonArray.

Affected Software

4 affected components

maven/cn.hutool:hutool-json<=5.8.21

maven/cn.hutool:hutool-core<=5.8.21

Hutool Hutool=5.8.21

Hutool Hutool<5.8.22

Event History

Sep 8, 2023

CVE Published

via MITRE·12:00 AM

Data Sourced

via MITRE·12:00 AM

Description

Data Sourced

via NVD·10:15 PM

DescriptionSeverityWeaknessAffected Software

Sep 9, 2023

Advisory Published

12:30 AM

Frequently Asked Questions

What is CVE-2023-42276?

CVE-2023-42276 is a vulnerability discovered in hutool v5.8.21, which allows for a buffer overflow via the component jsonArray.

How severe is CVE-2023-42276?

CVE-2023-42276 has a severity rating of 9.8, which is classified as critical.

Which software versions are affected by CVE-2023-42276?

CVE-2023-42276 affects hutool v5.8.21 in the hutool-json and hutool-core packages.

Is there a fix available for CVE-2023-42276?