Unrated severityNVD Advisory· Published Mar 21, 2014· Updated Jun 17, 2026
CVE-2013-6401
CVE-2013-6401
Description
Jansson, possibly 2.4 and earlier, does not restrict the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted JSON document.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:a:jansson_project:jansson:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:jansson_project:jansson:*:*:*:*:*:*:*:*range: <=2.4
- cpe:2.3:a:jansson_project:jansson:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:jansson_project:jansson:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:jansson_project:jansson:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:jansson_project:jansson:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:jansson_project:jansson:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:jansson_project:jansson:2.3:*:*:*:*:*:*:*
- cpe:2.3:a:jansson_project:jansson:2.3.1:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.