CVE-2022-23459

Name of the Vulnerable Software and Affected Versions jsonxx (affected versions not specified)

Description The issue is related to the use of the Value class in jsonxx, which may lead to memory corruption via a double free or a use after free. This occurs because the Value class has a default assignment operator that can be used with pointer types, potentially pointing to alterable data without updating the pointer itself. The jsonxx project has been archived, and no updates are expected.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.