VDB
CVE-2021-32292
CVE-2021-32292
PUBLISHED
An issue was discovered in json-c from 20200420 (post 0.14 unreleased code) through 0.15-20200726. A stack-buffer-overflow exists in the auxiliary sample program json_parse which is located in the function parseit.
EPSS 0.17% · 38.6th percentile
Risk Scores
EPSS Score
0.17%
38.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:22.04:LTS | json-c | 0, 0.15-2build2, 0.15-2build3 |
Exploit Intelligence
- https://github.com/json-c/json-c/issues/654 (nist-nvd)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
Timeline
- Aug 22, 2023 CVE Published
- Aug 25, 2023 EPSS Score
- Sep 27, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
- Dec 2, 2023 EPSS Score
- Jan 4, 2024 EPSS Score
- Feb 6, 2024 EPSS Score
- Mar 10, 2024 EPSS Score
- Apr 12, 2024 EPSS Score
- May 16, 2024 EPSS Score
- Jun 18, 2024 EPSS Score
- Jul 21, 2024 EPSS Score
References
- https://ubuntu.com/security/CVE-2021-32292 third-party-advisory
- https://github.com/json-c/json-c/issues/654 third-party-advisory
- https://ubuntu.com/security/notices/USN-6310-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2021-32292 third-party-advisory