CVE-2023-26819

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}.

Published: Apr 20, 2025
Updated: Jun 26, 2025
CVE: CVE-2023-26819
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
cjson_project / cjson	1.7.15	1.7.15.x

https://github.com/boofish/json_bugs/tree/main/cjson

Vulnerability Database

289,697

CVE-2023-26819