CVE-2021-27568: Improper Check for Unusual or Exceptional Conditions

June 16, 2021 (updated July 28, 2021)

An issue was discovered in netplex json-smart-v1 through 2015-10-23 and json-smart-v2 through 2.4. An exception is thrown from a function, but it is not caught, as demonstrated by NumberFormatException. When it is not caught, it may cause programs using the library to crash or expose sensitive information.

References

github.com/advisories/GHSA-v528-7hrm-frqp
github.com/netplex/json-smart-v1/commit/768db58ee0e3e344fcdb574b7629765308a1d0af
github.com/netplex/json-smart-v1/issues/7
github.com/netplex/json-smart-v2/issues/60
nvd.nist.gov/vuln/detail/CVE-2021-27568

Detect and mitigate CVE-2021-27568 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →