High severityNVD Advisory· Published Jan 5, 2021· Updated Aug 4, 2024
CVE-2020-36067
CVE-2020-36067
Description
GJSON <=v1.6.5 allows attackers to cause a denial of service (panic: runtime error: slice bounds out of range) via a crafted GET call.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/tidwall/gjsonGo | < 1.6.6 | 1.6.6 |
Affected products
2- GJSON/GJSONdescription
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-p64j-r5f4-pwwxghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-36067ghsaADVISORY
- github.com/tidwall/gjson/commit/bf4efcb3c18d1825b2988603dea5909140a5302bghsaWEB
- github.com/tidwall/gjson/issues/196ghsax_refsource_MISCWEB
- pkg.go.dev/vuln/GO-2021-0054ghsaWEB
News mentions
0No linked articles in our index yet.