VulnerableCode Package Details - pkg:maven/cn.hutool/hutool-json@5.8.11

Search for packages

Vulnerability	Summary	Fixed by
VCID-6kpd-gcmc-mycc Aliases: CVE-2023-42277 GHSA-7p8c-crfr-q93p	hutool Buffer Overflow vulnerability hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonObject.putByPath.	5.8.22 Affected by 0 other vulnerabilities.
VCID-nhsq-y1t2-dbge Aliases: CVE-2023-42276 GHSA-rxgf-r843-g53h	hutool Buffer Overflow vulnerability hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonArray.	5.8.22 Affected by 0 other vulnerabilities.
VCID-xwj3-1bfz-sbb6 Aliases: CVE-2023-42278 GHSA-rr66-qh5m-w6mx	hutool Buffer Overflow vulnerability hutool v5.8.21 was discovered to contain a buffer overflow via the component `JSONUtil.parse()`.	5.8.22 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-6kpd-gcmc-mycc
Aliases:
CVE-2023-42277
GHSA-7p8c-crfr-q93p

hutool Buffer Overflow vulnerability hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonObject.putByPath.

5.8.22
Affected by 0 other vulnerabilities.

VCID-nhsq-y1t2-dbge
Aliases:
CVE-2023-42276
GHSA-rxgf-r843-g53h

hutool Buffer Overflow vulnerability hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonArray.

5.8.22
Affected by 0 other vulnerabilities.

VCID-xwj3-1bfz-sbb6
Aliases:
CVE-2023-42278
GHSA-rr66-qh5m-w6mx

hutool Buffer Overflow vulnerability hutool v5.8.21 was discovered to contain a buffer overflow via the component `JSONUtil.parse()`.

5.8.22
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-32wz-1tnx-5qep	json stack overflow vulnerability A stack overflow in the XML.toJSONObject component of hutool-json v5.8.10 and org.json:json before version 20230227 allows attackers to cause a Denial of Service (DoS) via crafted JSON or XML data.	CVE-2022-45688 GHSA-3vqj-43w4-2q58
VCID-41pg-3cdb-jqee	hutool-json vulnerable to memory exhaustion hutool-json v5.8.10 was discovered to contain an out of memory error. This issue is similar to CVE-2022-45690.	CVE-2022-45689 GHSA-fxrc-hg6j-6v3x
VCID-5xm4-tyx3-wudu	hutool-json stack overflow vulnerability A stack overflow in the org.json.JSONTokener.nextValue::JSONTokener.java component of hutool-json v5.8.10 allows attackers to cause a Denial of Service (DoS) via crafted JSON or XML data.	CVE-2022-45690 GHSA-whgh-g24c-3j5q

Vulnerability

Summary

Aliases

VCID-32wz-1tnx-5qep

json stack overflow vulnerability A stack overflow in the XML.toJSONObject component of hutool-json v5.8.10 and org.json:json before version 20230227 allows attackers to cause a Denial of Service (DoS) via crafted JSON or XML data.

CVE-2022-45688
GHSA-3vqj-43w4-2q58

VCID-41pg-3cdb-jqee

hutool-json vulnerable to memory exhaustion hutool-json v5.8.10 was discovered to contain an out of memory error. This issue is similar to CVE-2022-45690.

CVE-2022-45689
GHSA-fxrc-hg6j-6v3x

VCID-5xm4-tyx3-wudu

hutool-json stack overflow vulnerability A stack overflow in the org.json.JSONTokener.nextValue::JSONTokener.java component of hutool-json v5.8.10 allows attackers to cause a Denial of Service (DoS) via crafted JSON or XML data.

CVE-2022-45690
GHSA-whgh-g24c-3j5q

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T22:37:43.202297+00:00	GitLab Importer	Affected by	VCID-xwj3-1bfz-sbb6	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2023-42278.yml	38.4.0
2026-04-16T22:37:42.382763+00:00	GitLab Importer	Affected by	VCID-6kpd-gcmc-mycc	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2023-42277.yml	38.4.0
2026-04-16T22:37:41.568412+00:00	GitLab Importer	Affected by	VCID-nhsq-y1t2-dbge	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2023-42276.yml	38.4.0
2026-04-16T22:18:02.697656+00:00	GitLab Importer	Fixing	VCID-32wz-1tnx-5qep	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2022-45688.yml	38.4.0
2026-04-16T22:18:00.453845+00:00	GitLab Importer	Fixing	VCID-41pg-3cdb-jqee	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2022-45689.yml	38.4.0
2026-04-16T22:17:59.279050+00:00	GitLab Importer	Fixing	VCID-5xm4-tyx3-wudu	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2022-45690.yml	38.4.0
2026-04-11T23:57:02.844368+00:00	GitLab Importer	Affected by	VCID-xwj3-1bfz-sbb6	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2023-42278.yml	38.3.0
2026-04-11T23:57:01.951338+00:00	GitLab Importer	Affected by	VCID-6kpd-gcmc-mycc	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2023-42277.yml	38.3.0
2026-04-11T23:57:01.031648+00:00	GitLab Importer	Affected by	VCID-nhsq-y1t2-dbge	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2023-42276.yml	38.3.0
2026-04-11T23:35:33.755029+00:00	GitLab Importer	Fixing	VCID-32wz-1tnx-5qep	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2022-45688.yml	38.3.0
2026-04-11T23:35:30.752516+00:00	GitLab Importer	Fixing	VCID-41pg-3cdb-jqee	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2022-45689.yml	38.3.0
2026-04-11T23:35:29.368648+00:00	GitLab Importer	Fixing	VCID-5xm4-tyx3-wudu	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2022-45690.yml	38.3.0
2026-04-03T00:00:06.340958+00:00	GitLab Importer	Affected by	VCID-xwj3-1bfz-sbb6	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2023-42278.yml	38.1.0
2026-04-03T00:00:05.509581+00:00	GitLab Importer	Affected by	VCID-6kpd-gcmc-mycc	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2023-42277.yml	38.1.0
2026-04-03T00:00:04.679927+00:00	GitLab Importer	Affected by	VCID-nhsq-y1t2-dbge	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2023-42276.yml	38.1.0
2026-04-02T23:40:10.805908+00:00	GitLab Importer	Fixing	VCID-32wz-1tnx-5qep	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2022-45688.yml	38.1.0
2026-04-02T23:40:08.669931+00:00	GitLab Importer	Fixing	VCID-41pg-3cdb-jqee	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2022-45689.yml	38.1.0
2026-04-02T23:40:07.492689+00:00	GitLab Importer	Fixing	VCID-5xm4-tyx3-wudu	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2022-45690.yml	38.1.0
2026-04-02T16:58:36.239210+00:00	GHSA Importer	Fixing	VCID-5xm4-tyx3-wudu	https://github.com/advisories/GHSA-whgh-g24c-3j5q	38.1.0
2026-04-01T18:02:41.761020+00:00	GitLab Importer	Fixing	VCID-32wz-1tnx-5qep	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2022-45688.yml	38.0.0
2026-04-01T18:02:39.380441+00:00	GitLab Importer	Fixing	VCID-41pg-3cdb-jqee	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2022-45689.yml	38.0.0
2026-04-01T18:02:37.941921+00:00	GitLab Importer	Fixing	VCID-5xm4-tyx3-wudu	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-json/CVE-2022-45690.yml	38.0.0
2026-04-01T13:05:57.472995+00:00	GithubOSV Importer	Fixing	VCID-5xm4-tyx3-wudu	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/12/GHSA-whgh-g24c-3j5q/GHSA-whgh-g24c-3j5q.json	38.0.0