VYPR
Unrated severityNVD Advisory· Published Jun 14, 2023· Updated Jan 2, 2025

Out of Bounds Access Leading to Undefined Behavior

CVE-2023-3040

Description

A debug function in the lua-resty-json package, up to commit id 3ef9492bd3a44d9e51301d6adc3cd1789c8f534a (merged in PR #14) contained an out of bounds access bug that could have allowed an attacker to launch a DoS if the function was used to parse untrusted input data. It is important to note that because this debug function was only used in tests and demos, it was not exploitable in a normal environment.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Cloudflare/lua-resty-jsonllm-create2 versions
    < commit 3ef9492bd3a44d9e51301d6adc3cd1789c8f534a+ 1 more
    • (no CPE)range: < commit 3ef9492bd3a44d9e51301d6adc3cd1789c8f534a
    • (no CPE)range: 1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.