CVE-2014-4616

EPSS 0.38% · P59 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2014-4616

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Array index error in the scanstring function in the _json module in Python 2.7 through 3.5 and simplejson before 2.6.1 allows context-dependent attackers to read arbitrary process memory via a negative index value in the idx argument to the raw_decode function.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Python和simplejson _json模块信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Python是Python软件基金会的一套开源的、面向对象的程序设计语言。该语言具有可扩展、支持模块和包、支持多种平台等特点。simplejson是一个可扩展的JSON解码/编码器。_json module是其中的一个数据交换模块。 Python 2.7版本至3.5版本和simplejson 2.6.1之前的版本中的_json模块的‘scanstring’函数存在安全漏洞。本地攻击者可通过向‘raw_decode’函数发送带有负的指针值的‘idx’参数利用该漏洞读取任意的进程内存。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2014-4616

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2014-4616

请登录查看更多情报信息。

https://bugzilla.redhat.com/show_bug.cgi?id=1112285x_refsource_CONFIRM
http://bugs.python.org/issue21529x_refsource_CONFIRM
https://hackerone.com/reports/12297x_refsource_MISC
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=752395x_refsource_MISC
http://www.securityfocus.com/bid/68119vdb-entryx_refsource_BID
https://security.gentoo.org/glsa/201503-10vendor-advisoryx_refsource_GENTOO
RHSA-2015:1064 - Security Advisory - Red Hat Customer Portalvendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-updates/2014-07/msg00015.htmlvendor-advisoryx_refsource_SUSE
http://openwall.com/lists/oss-security/2014/06/24/7mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2014-4616

Same Patch Batch · n/a · 2017-08-24 · 27 CVEs total

CVE-2015-8308		LXDM 安全漏洞
CVE-2017-13666		libbpg MulticoreWare x265 数字错误漏洞
CVE-2017-13658		ImageMagick 输入验证错误漏洞
CVE-2017-12836		CVS 安全漏洞
CVE-2017-12137		Xen 安全漏洞
CVE-2017-12136		Xen 竞争条件漏洞
CVE-2017-12135		Xen 安全漏洞
CVE-2017-12134		Xen 安全漏洞
CVE-2017-11424		PyJWT 安全漏洞
CVE-2017-13669		NexusPHP SQL注入漏洞
CVE-2017-12679		NexusPHP SQL注入漏洞
CVE-2017-13671		MISP 跨站脚本漏洞
CVE-2017-12879		Paessler PRTG Network Monitor 跨站脚本漏洞
CVE-2017-13686		Linux kernel 安全漏洞
CVE-2015-7896		Samsung Galaxy S6 LibQJpeg 安全漏洞
CVE-2015-7516		ONOS 安全漏洞
CVE-2015-7259		ZTE ADSL ZXV10 W300 安全漏洞
CVE-2015-7258		ZTE ADSL ZXV10 W300 安全漏洞
CVE-2015-7257		ZTE ADSL ZXV10 W300 安全漏洞
CVE-2015-5293		Red Hat Enterprise Virtualization Manager 安全漏洞

Showing top 20 of 27 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2014-4616

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2014-4616

I. Basic Information for CVE-2014-4616

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2014-4616

III. Intelligence Information for CVE-2014-4616

Same Patch Batch · n/a · 2017-08-24 · 27 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2014-4616

Leave a comment