High severity7.5OSV Advisory· Published Sep 8, 2025· Updated Apr 15, 2026

CVE-2025-40930

Description

JSON::SIMD before version 1.07 and earlier for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact.

Affected products

Pjuhasz/JSON SimdOSV
Range: 1.04, 1.05, 1.06, …

Patches

9a87de7331c9

https://github.com/pjuhasz/json-simdvia osv

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

www.openwall.com/lists/oss-security/2025/09/08/3nvd
github.com/pjuhasz/JSON-SIMD/commit/9a87de7331c9fa5198cae404a83b17649cf7b918.patchnvd
metacpan.org/release/PJUHASZ/JSON-SIMD-1.06/source/SIMD.xsnvd
metacpan.org/release/PJUHASZ/JSON-SIMD-1.07/changesnvd

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000