Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jerryscript jerryscript 2.3.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2020-24187
An issue exists in ecma-helpers.c in jerryscript version 2.3.0, allows local malicious users to cause a denial of service (DoS) (Null Pointer Dereference).
Jerryscript Jerryscript 2.3.0
5
CVSSv2
CVE-2021-46170
An issue exists in JerryScript commit a6ab5e9. There is an Use-After-Free in lexer_compare_identifier_to_string in js-lexer.c file.
Jerryscript Jerryscript 2.3.0
6.4
CVSSv2
CVE-2020-29657
In JerryScript 2.3.0, there is an out-of-bounds read in main_print_unhandled_exception in the main-utils.c file.
Jerryscript Jerryscript 2.3.0
NA
CVE-2020-22597
An issue in Jerrscript- project Jerryscrip v. 2.3.0 allows a remote malicious user to execute arbitrary code via the ecma_builtin_array_prototype_object_slice parameter.
Jerryscript Jerryscript 2.3.0
5.8
CVSSv2
CVE-2020-24344
JerryScript up to and including 2.3.0 has a (function({a=arguments}){const arguments}) buffer over-read.
Jerryscript Jerryscript
6.8
CVSSv2
CVE-2020-24345
JerryScript up to and including 2.3.0 allows stack consumption via function a(){new new Proxy(a,{})}JSON.parse("[]",a). NOTE: the vendor states that the problem is the lack of the --stack-limit option
Jerryscript Jerryscript
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started