{"vulnerability": "CVE-2023-1370", "sightings": [{"uuid": "18f741c7-629d-48c9-8b46-39abc5d43b9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-1370", "type": "seen", "source": "https://t.me/cvedetector/17343", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-57699 - Netplex Json-smart Denial of Service (DoS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-57699 \nPublished : Feb. 5, 2025, 10:15 p.m. | 2\u00a0hours, 1\u00a0minute ago \nDescription : A security issue was found in Netplex Json-smart 2.5.0 through 2.5.1. When loading a specially crafted JSON input, containing a large number of \u2019{\u2019, a stack exhaustion can be trigger, which could allow an attacker to cause a Denial of Service (DoS). This issue exists because of an incomplete fix for CVE-2023-1370. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-06T01:50:52.000000Z"}, {"uuid": "fa82ac67-88b3-4e5c-8afb-368ec10a2523", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-1370", "type": "seen", "source": "https://t.me/ctinow/181420", "content": "https://ift.tt/KpatCHR\nCVE-2023-1370 | Oracle Banking Virtual Account Management up to 14.7.0 Common Core denial of service", "creation_timestamp": "2024-02-08T15:11:39.000000Z"}, {"uuid": "aeead199-1663-4090-96ae-d7657e9cc33f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-1370", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5763", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-1370\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)\n\ud83d\udd39 Description: [Json-smart](https://netplex.github.io/json-smart/) is a performance focused, JSON processor lib.\n\nWhen reaching a \u2018[\u2018 or \u2018{\u2018 character in the JSON input, the code parses an array or an object respectively.\n\nIt was discovered that the code does not have any limit to the nesting of such arrays or objects. Since the parsing of nested arrays and objects is done recursively, nesting too many of them can cause a stack exhaustion (stack overflow) and crash the software.\n\ud83d\udccf Published: 2023-03-13T09:04:36.365Z\n\ud83d\udccf Modified: 2025-02-27T19:09:50.662Z\n\ud83d\udd17 References:\n1. https://research.jfrog.com/vulnerabilities/stack-exhaustion-in-json-smart-leads-to-denial-of-service-when-parsing-malformed-json-xray-427633/\n2. https://security.netapp.com/advisory/ntap-20240621-0006/", "creation_timestamp": "2025-02-27T19:26:04.000000Z"}, {"uuid": "84b83bc3-0425-4f64-a714-5eb5290f7c0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-1370", "type": "seen", "source": "https://t.me/ctinow/181311", "content": "https://ift.tt/goZ7eYw\nCVE-2023-1370 | Oracle Banking Cash Management up to 14.7.0 Accessibility denial of service", "creation_timestamp": "2024-02-08T12:06:32.000000Z"}, {"uuid": "d89b608a-3e1e-4acb-a373-694f41ec65be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-1370", "type": "seen", "source": "https://t.me/ctinow/181398", "content": "https://ift.tt/w509kc8\nCVE-2023-1370 | Oracle Banking Liquidity Management up to 14.7.0 Common denial of service", "creation_timestamp": "2024-02-08T14:41:39.000000Z"}, {"uuid": "1553331b-919f-452e-9ac5-c2c6408a8d5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-1370", "type": "seen", "source": "https://t.me/ctinow/181415", "content": "https://ift.tt/O7lqF9H\nCVE-2023-1370 | Oracle Banking Supply Chain Finance up to 14.7.0 Security denial of service", "creation_timestamp": "2024-02-08T15:11:33.000000Z"}, {"uuid": "44c22f3e-33b4-486e-937e-fc562793c4d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-1370", "type": "seen", "source": "https://t.me/ctinow/181352", "content": "https://ift.tt/D9ydxjA\nCVE-2023-1370 | Oracle Banking Credit Facilities Process Management up to 14.7.0 Common denial of service", "creation_timestamp": "2024-02-08T13:11:32.000000Z"}]}