EPSS
Percentile
41.7%
hutool-json is vulnerable to denial of service.The vulnerability is due to the JSONTokener.nextValue method causing a stack overflow which allows an attacker to cause an application crash via malicious input.
JSONTokener.nextValue
github.com/advisories/GHSA-whgh-g24c-3j5q
github.com/dromara/hutool/commit/d8283fedb0e4c6b159e3f8a1b1ed168167d924da
github.com/dromara/hutool/issues/2746
github.com/stleary/JSON-java/issues/654