Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jerryscript jerryscript 2.3.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-46170
An issue exists in JerryScript commit a6ab5e9. There is an Use-After-Free in lexer_compare_identifier_to_string in js-lexer.c file.
Jerryscript Jerryscript 2.3.0
5.5
CVSSv3
CVE-2020-24187
An issue exists in ecma-helpers.c in jerryscript version 2.3.0, allows local malicious users to cause a denial of service (DoS) (Null Pointer Dereference).
Jerryscript Jerryscript 2.3.0
9.1
CVSSv3
CVE-2020-29657
In JerryScript 2.3.0, there is an out-of-bounds read in main_print_unhandled_exception in the main-utils.c file.
Jerryscript Jerryscript 2.3.0
9.8
CVSSv3
CVE-2020-22597
An issue in Jerrscript- project Jerryscrip v. 2.3.0 allows a remote malicious user to execute arbitrary code via the ecma_builtin_array_prototype_object_slice parameter.
Jerryscript Jerryscript 2.3.0
7.1
CVSSv3
CVE-2020-24344
JerryScript up to and including 2.3.0 has a (function({a=arguments}){const arguments}) buffer over-read.
Jerryscript Jerryscript
7.8
CVSSv3
CVE-2020-24345
JerryScript up to and including 2.3.0 allows stack consumption via function a(){new new Proxy(a,{})}JSON.parse("[]",a). NOTE: the vendor states that the problem is the lack of the --stack-limit option
Jerryscript Jerryscript
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started