CVE-2025-67221

ADVISORY - github

Summary

The orjson.dumps function in orjson thru 3.11.4 does not limit recursion for deeply nested JSON documents.

EPSS Score⁠: 0.0004 (0.119)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-770⁠

Allocation of Resources Without Limits or Throttling

ADVISORY - github

CWE-770⁠

Allocation of Resources Without Limits or Throttling

Impacted images

Advisories

NIST

CREATED

6 days ago

UPDATED

2 days ago

ADVISORY IDCVE-2025-67221⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-770⁠

CVSS SCORE

7.5high

GitHub

CREATED

6 days ago

UPDATED

5 days ago

ADVISORY IDGHSA-hx9q-6w63-j58v⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-770⁠

CVSS SCORE

5.5medium

Chainguard

CREATED

1 day ago

UPDATED

1 day ago

ADVISORY ID

CGA-2m5c-j9g3-7mvq

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY