CyberRota
← Ana sayfaya dön

CVE-2026-9563

HIGH · CVSS 7.5 EPSS %0.37 Public Exploit

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-07-02T09:16:19.247 · Çekilme zamanı: 2026-07-02T18:27:52.371233+00:00

CyberRota Yorumu

Bellek tüketimine neden olabilir.

Public Exploit Sinyali

Bu CVE için açıklama veya referanslarda public exploit / PoC / GitHub / Metasploit sinyali tespit edildi.

Not: Bu bağlantılar yalnızca güvenlik araştırması ve doğrulama amacıyla listelenmiştir.

CVE
CVE-2026-9563
Severity
HIGH
CVSS
7.5
EPSS
%0.37

Orijinal NVD Açıklaması

In Eclipse Parsson published Maven Central artifacts before version 1.1.8, the JSON parser did not enforce a default maximum on the number of characters consumed while parsing a single JSON document. Applications that parse attacker- controlled JSON can be forced to consume excessive CPU and memory by processing very large documents, including large arrays, objects, strings, numbers, whitespace, or nested structures, resulting in a denial of service. Eclipse Parsson 1.1.8 introduces a configurable maximum parsing limit with a default limit of 15 million parser-consumed characters.