Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
artifex mujs vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2018-5759
jsparse.c in Artifex MuJS up to and including 1.0.2 does not properly maintain the AST depth for binary expressions, which allows remote malicious users to cause a denial of service (excessive recursion) via a crafted file.
Artifex Mujs
1 EDB exploit
1 Github repository
445
VMScore
CVE-2016-9017
Artifex Software, Inc. MuJS before a5c747f1d40e8d6659a37a8d25f13fb5acf8e767 allows context-dependent malicious users to obtain sensitive information by using the "opname in crafted JavaScript file" approach, related to an "Out-of-Bounds read" issue affecting t...
Artifex Mujs
445
VMScore
CVE-2020-22885
Buffer overflow vulnerability in mujs prior to 1.0.8 due to recursion in the GC scanning phase, allows remote malicious users to cause a denial of service.
Artifex Mujs
445
VMScore
CVE-2020-22886
Buffer overflow vulnerability in function jsG_markobject in jsgc.c in mujs prior to 1.0.8, allows remote malicious users to cause a denial of service.
Artifex Mujs
605
VMScore
CVE-2020-24343
Artifex MuJS up to and including 1.0.7 has a use-after-free in jsrun.c because of unconditional marking in jsgc.c.
Artifex Mujs
NA
CVE-2021-33797
Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1. An integer overflow happens when js_strtod() reads in floating point exponent, which leads to a buffer overflow in the pointer *d.
Artifex Mujs
NA
CVE-2021-33796
In MuJS before version 1.1.2, a use-after-free flaw in the regexp source property access may cause denial of service.
Artifex Mujs
445
VMScore
CVE-2016-9109
Artifex Software MuJS allows malicious users to cause a denial of service (crash) via vectors related to incomplete escape sequences. NOTE: this vulnerability exists due to an incomplete fix for CVE-2016-7563.
Artifex Mujs -
445
VMScore
CVE-2016-9136
Artifex Software, Inc. MuJS before a0ceaf5050faf419401fe1b83acfa950ec8a8a89 allows context-dependent malicious users to obtain sensitive information by using the "crafted JavaScript" approach, related to a "Buffer Over-read" issue.
Artifex Mujs
605
VMScore
CVE-2017-5628
An issue exists in Artifex Software, Inc. MuJS prior to 8f62ea10a0af68e56d5c00720523ebcba13c2e6a. The MakeDay function in jsdate.c does not validate the month, leading to an integer overflow when parsing a specially crafted JS file.
Artifex Mujs
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »