Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jerryscript jerryscript - vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-41751
Buffer overflow vulnerability in file ecma-builtin-array-prototype.c:909 in function ecma_builtin_array_prototype_object_slice in Jerryscript before commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 on Oct 20, 2021.
Jerryscript Jerryscript
9.8
CVSSv3
CVE-2021-41752
Stack overflow vulnerability in Jerryscript before commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 on Oct 20, 2021 due to an unbounded recursive call to the new opt() function.
Jerryscript Jerryscript
9.8
CVSSv3
CVE-2021-42863
A buffer overflow in ecma_builtin_typedarray_prototype_filter() in JerryScript version fe3a5c0 allows an malicious user to construct a fake object or a fake arraybuffer with unlimited size.
Jerryscript Jerryscript
5.5
CVSSv3
CVE-2022-22890
There is an Assertion 'arguments_type != SCANNER_ARGUMENTS_PRESENT && arguments_type != SCANNER_ARGUMENTS_PRESENT_NO_REG' failed at /jerry-core/parser/js/js-scanner-util.c in Jerryscript 3.0.0.
Jerryscript Jerryscript 3.0.0
5.5
CVSSv3
CVE-2022-22892
There is an Assertion 'ecma_is_value_undefined (value) || ecma_is_value_null (value) || ecma_is_value_boolean (value) || ecma_is_value_number (value) || ecma_is_value_string (value) || ecma_is_value_bigint (value) || ecma_is_value_symbol (value) || ecma_is_value_object (valu...
Jerryscript Jerryscript 3.0.0
7.5
CVSSv3
CVE-2021-46170
An issue exists in JerryScript commit a6ab5e9. There is an Use-After-Free in lexer_compare_identifier_to_string in js-lexer.c file.
Jerryscript Jerryscript 2.3.0
5.5
CVSSv3
CVE-2021-46337
There is an Assertion 'page_p != NULL' failed at /parser/js/js-parser-mem.c(parser_list_get) in JerryScript 3.0.0.
Jerryscript Jerryscript 3.0.0
5.5
CVSSv3
CVE-2021-46345
There is an Assertion 'cesu8_cursor_p == cesu8_end_p' failed at /jerry-core/lit/lit-strings.c in JerryScript 3.0.0.
Jerryscript Jerryscript 3.0.0
7.5
CVSSv3
CVE-2020-13622
JerryScript 2.2.0 allows malicious users to cause a denial of service (assertion failure) because a property key query for a Proxy object returns unintended data.
Jerryscript Jerryscript 2.2.0
7.5
CVSSv3
CVE-2020-13623
JerryScript 2.2.0 allows malicious users to cause a denial of service (stack consumption) via a proxy operation.
Jerryscript Jerryscript 2.2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »