Low severity2.9NVD Advisory· Published May 23, 2025· Updated Jun 17, 2026
CVE-2023-53154
CVE-2023-53154
Description
parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is called.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <1.7.18
- cJSON project/cJSONv5Range: 0
Patches
Vulnerability mechanics
References
3- github.com/DaveGamble/cJSON/issues/800nvdExploitIssue TrackingVendor Advisory
- github.com/DaveGamble/cJSON/compare/v1.7.17...v1.7.18nvdRelease Notes
- lists.debian.org/debian-lts-announce/2025/06/msg00014.htmlnvd
News mentions
0No linked articles in our index yet.