Description

Array index error in the scanstring function in the _json module in Python 2.7 through 3.5 and simplejson before 2.6.1 allows context-dependent attackers to read arbitrary process memory via a negative index value in the idx argument to the raw_decode function.

Remediation

References

CVE-2014-4616

Related Vulnerabilities

MySQL CVE-2024-21209 Vulnerability (CVE-2024-21209)

WordPress Plugin wp-football Multiple Cross-Site Scripting Vulnerabilities (1.1)

WordPress Plugin WP-Live Chat by 3CX Arbitrary File Upload (8.0.31)

Oracle JRE CVE-2022-21299 Vulnerability (CVE-2022-21299)

WordPress Plugin WordPress Calls to Action Multiple Cross-Site Scripting Vulnerabilities (2.5.0)

Severity

Medium

Classification

CVE-2014-4616 CWE-119 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities