VYPR
Medium severity5.3OSV Advisory· Published Oct 4, 2024· Updated Apr 15, 2026

CVE-2024-47855

CVE-2024-47855

Description

util/JSONTokener.java in JSON-lib before 3.1.0 mishandles an unbalanced comment string.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.kordamp.json:json-lib-coreMaven
< 3.1.03.1.0
net.sf.json-lib:json-libMaven
<= 2.4

Affected products

11

Patches

Vulnerability mechanics

References

6

News mentions

1