📦

aeson

Vendor: haskell

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 1 Total Indexed

Avg. EPSS 0.30% Exploit Prob.

Latest CVE CVE-2022-3433 Oct 10

Security Vulnerability Index

Page 1 / 1

6.5 CVSS

CVE-2022-3433

The aeson library is not safe to use to consume untrusted JSON input. A remote user could abuse this flaw to produce a hash collision in the underlying unordered-containers library by sending specially crafted JSON data, resulting in a denial of service.

EPSS: 0.30%

Severity: MEDIUM

Oct 10, 2022

Displaying 1 of 1 Total Entries

Total 1 Sections