php7-json vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the php7-json package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M CVE-2025-1861	<7.4.33-150400.4.48.1
H CVE-2025-1736	<7.4.33-150400.4.48.1
M CVE-2025-1734	<7.4.33-150400.4.48.1
M CVE-2025-1219	<7.4.33-150400.4.48.1
H CVE-2025-1217	<7.4.33-150400.4.48.1
M CVE-2024-11235	<7.4.33-150400.4.48.1
M Insufficient Verification of Data Authenticity	<7.4.33-150400.4.37.1
H Out-of-Bounds	<7.4.33-150400.4.28.1
H XML External Entity (XXE) Injection	<7.4.33-150400.4.28.1
M Use of Insufficiently Random Values	<7.4.33-150400.4.25.1
M Out-of-bounds Write	<7.4.33-150400.4.22.1
H Resource Exhaustion	<7.4.33-150400.4.19.1
H Allocation of Resources Without Limits or Throttling	<7.4.33-150400.4.19.1
M Use of Password Hash With Insufficient Computational Effort	<7.4.33-150400.4.19.1
M CVE-2022-31631	<7.4.33-150400.4.16.1
H Integer Overflow or Wraparound	<7.4.33-150400.4.13.1
M Out-of-bounds Read	<7.4.33-150400.4.13.1
M CVE-2022-31629	<7.4.33-150400.4.13.1
M Loop with Unreachable Exit Condition ('Infinite Loop')	<7.4.33-150400.4.13.1
H Buffer Overflow	<7.4.33-150400.4.13.1
H Release of Invalid Pointer or Reference	<7.4.33-150400.4.13.1
M Use After Free	<7.4.33-150400.4.13.1
M CVE-2021-21707	<7.4.33-150400.4.13.1
H Buffer Overflow	<7.4.25-150400.4.8.1
H Release of Invalid Pointer or Reference	<7.4.25-150400.4.8.1
M CVE-2021-21707	<7.4.25-150400.4.8.1
L SUSE-SU-2022:1755-1	<7.4.25-150400.4.3.1