Search for packages
| purl | pkg:maven/org.eclipse.parsson/parsson@1.0.3 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-gckj-wdhj-wfhe
Aliases: CVE-2023-4043 GHSA-g8p6-p27c-52fx |
Eclipse Parsson Denial of Service vulnerability In Eclipse Parsson before versions 1.1.4 and 1.0.5, Parsing JSON from untrusted sources can lead malicious actors to exploit the fact that the built-in support for parsing numbers with large scale in Java has a number of edge cases where the input text of a number can lead to much larger processing time than one would expect. To mitigate the risk, parsson put in place a size limit for the numbers as well as their scale. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T22:42:28.768712+00:00 | GitLab Importer | Affected by | VCID-gckj-wdhj-wfhe | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.parsson/parsson/CVE-2023-4043.yml | 38.4.0 |
| 2026-04-12T00:02:00.235044+00:00 | GitLab Importer | Affected by | VCID-gckj-wdhj-wfhe | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.parsson/parsson/CVE-2023-4043.yml | 38.3.0 |
| 2026-04-03T00:05:01.445046+00:00 | GitLab Importer | Affected by | VCID-gckj-wdhj-wfhe | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.parsson/parsson/CVE-2023-4043.yml | 38.1.0 |