← voltar
CVE-2025-9403

jqlang jq JSON jq_test.c run_jq_tests assertion

CVSS 4.8 MEDIUMEPSS 0.2%CWE-617
A vulnerability was determined in jqlang jq up to 1.6. Impacted is the function run_jq_tests of the file jq_test.c of the component JSON Parser. Executing manipulation can lead to reachable assertion. The attack requires local access. The exploit has been publicly disclosed and may be utilized. Other versions might be affected as well.
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P
Produtos afetados
jqlang · jq

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://drive.google.com/file/d/1r8m9PhU_rk-QPj6OMcs415FcvWPD-zJY/view?usp=sharinghttps://github.com/jqlang/jq/issues/3393https://vuldb.com/?ctiid.321239https://vuldb.com/?id.321239https://vuldb.com/?submit.633170