Du4To

**Name of the Vulnerable Software and Affected Versions** cJSON version 1.7.16 **Description** The issue is related to the cJSON InsertItemInArray function in the JSON-C library, which is used for processing JSON files in C. It is associated with pointer dereference errors. Exploitation of this issue may allow a remote attacker to cause a denial of service. The function `cJSON InsertItemInArray` at `cJSON.c` is specifically affected. **Recommendations** For cJSON version 1.7.16, as a temporary workaround, consider disabling the `cJSON InsertItemInArray` function until a patch is available. Restrict access to the vulnerable `cJSON.c` module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.