OSV-2023-60

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/spring-boot/OSV-2023-60.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-60
Published
2023-02-15T13:01:50.670813Z
Modified
2023-02-15T13:01:50.671047Z
Summary
Security exception in org.json.JSONTokener.nextValue
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=55978

Crash type: Security exception
Crash state:
org.json.JSONTokener.nextValue
org.json.JSONTokener.readArray
org.json.JSONTokener.nextToInternal
References

Affected packages

OSS-Fuzz / spring-boot

Package

Name
spring-boot
Purl
pkg:generic/spring-boot

Affected ranges

Type
GIT
Repo
https://github.com/spring-projects/spring-boot
Events
Introduced
a0de59c209a54c4e1dfa24f7a03be32597d97219

Ecosystem specific 

{
    "severity": "LOW"
}

Database specific 

{
    "introduced_range": "12537c717016ed352be4fcc5cf95f18051aee498:0e67fbc855b714253e0b1fa7115d93f76c5618e3"
}