DaveGamble/cJSON cJSON 1.7.8 is affected by: Improper Check for Unusual or Exceptional Conditions. The impact is: Null dereference, so attack can cause denial of service. The component is: cJSON_GetObjectItemCaseSensitive() function. The attack vector is: crafted json file. The fixed version is: 1.7.9 and later.
{
"unresolved_ranges": [
{
"cpes": [
"cpe:2.3:a:oracle:timesten_in-memory_database:*:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"fixed": "18.1.3.1.0"
}
],
"source": "CPE_RANGE",
"vendor_product": "oracle:timesten_in-memory_database"
}
]
}[
{
"source": "https://github.com/davegamble/cjson/commit/be749d7efa7c9021da746e685bd6dec79f9dd99b",
"deprecated": false,
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"224199097714152500685060613489551063673",
"263306131530668607124660773459305113150",
"101567609787641322313061128201671283971",
"27373886340953218651097535203678432342",
"94349402640710516686814555294711995288",
"256041248616311685493264993785715254352",
"249984960554289153839085472433335404881"
]
},
"id": "CVE-2019-1010239-9a71d5e9",
"signature_type": "Line",
"target": {
"file": "tests/misc_tests.c"
}
},
{
"source": "https://github.com/davegamble/cjson/commit/be749d7efa7c9021da746e685bd6dec79f9dd99b",
"deprecated": false,
"signature_version": "v1",
"digest": {
"function_hash": "109269136433503758609033108952340694087",
"length": 1312.0
},
"id": "CVE-2019-1010239-cb2922af",
"signature_type": "Function",
"target": {
"function": "main",
"file": "tests/misc_tests.c"
}
},
{
"source": "https://github.com/davegamble/cjson/commit/be749d7efa7c9021da746e685bd6dec79f9dd99b",
"deprecated": false,
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"110158048780372033563003727122640263566",
"102135626717220927749796671384019011331",
"161798095326186906482607920762638486283",
"326347769658183875004517515912785408478",
"77015495928629426346096685545810977164",
"223966340855811208281438311395380140665",
"309066967077049681069119056470985999036"
]
},
"id": "CVE-2019-1010239-d54c952c",
"signature_type": "Line",
"target": {
"file": "cJSON.c"
}
}
]
"2026-07-08T18:17:17Z"
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-1010239.json"