CVE-2020-35381

Name of the Vulnerable Software and Affected Versions jsonparser versions 1.0.0 through 1.1.0

Description The issue allows attackers to cause a denial of service via a GET call due to improper bounds checking in jsonparser. Maliciously crafted JSON objects can cause an out-of-bounds panic, potentially used as a denial of service vector if parsing user input.

Recommendations For jsonparser versions 1.0.0 through 1.1.0, update to version 1.1.1 or later to resolve the issue. As a temporary workaround, consider restricting access to user-input parsing functionality to minimize the risk of exploitation.