Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
artifex mujs vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2018-5759
jsparse.c in Artifex MuJS up to and including 1.0.2 does not properly maintain the AST depth for binary expressions, which allows remote malicious users to cause a denial of service (excessive recursion) via a crafted file.
Artifex Mujs
1 EDB exploit
1 Github repository
5
CVSSv2
CVE-2016-9017
Artifex Software, Inc. MuJS before a5c747f1d40e8d6659a37a8d25f13fb5acf8e767 allows context-dependent malicious users to obtain sensitive information by using the "opname in crafted JavaScript file" approach, related to an "Out-of-Bounds read" issue affecting t...
Artifex Mujs
5
CVSSv2
CVE-2020-22885
Buffer overflow vulnerability in mujs prior to 1.0.8 due to recursion in the GC scanning phase, allows remote malicious users to cause a denial of service.
Artifex Mujs
5
CVSSv2
CVE-2020-22886
Buffer overflow vulnerability in function jsG_markobject in jsgc.c in mujs prior to 1.0.8, allows remote malicious users to cause a denial of service.
Artifex Mujs
6.8
CVSSv2
CVE-2020-24343
Artifex MuJS up to and including 1.0.7 has a use-after-free in jsrun.c because of unconditional marking in jsgc.c.
Artifex Mujs
NA
CVE-2021-33797
Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1. An integer overflow happens when js_strtod() reads in floating point exponent, which leads to a buffer overflow in the pointer *d.
Artifex Mujs
NA
CVE-2021-33796
In MuJS before version 1.1.2, a use-after-free flaw in the regexp source property access may cause denial of service.
Artifex Mujs
5
CVSSv2
CVE-2016-9109
Artifex Software MuJS allows malicious users to cause a denial of service (crash) via vectors related to incomplete escape sequences. NOTE: this vulnerability exists due to an incomplete fix for CVE-2016-7563.
Artifex Mujs -
5
CVSSv2
CVE-2016-9136
Artifex Software, Inc. MuJS before a0ceaf5050faf419401fe1b83acfa950ec8a8a89 allows context-dependent malicious users to obtain sensitive information by using the "crafted JavaScript" approach, related to a "Buffer Over-read" issue.
Artifex Mujs
6.8
CVSSv2
CVE-2017-5627
An issue exists in Artifex Software, Inc. MuJS prior to 4006739a28367c708dea19aeb19b8a1a9326ce08. The jsR_setproperty function in jsrun.c lacks a check for a negative array length. This leads to an integer overflow in the js_pushstring function in jsrun.c when parsing a specially...
Artifex Mujs
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »