Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
artifex mujs vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-33797
Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1. An integer overflow happens when js_strtod() reads in floating point exponent, which leads to a buffer overflow in the pointer *d.
Artifex Mujs
5.5
CVSSv3
CVE-2018-5759
jsparse.c in Artifex MuJS up to and including 1.0.2 does not properly maintain the AST depth for binary expressions, which allows remote malicious users to cause a denial of service (excessive recursion) via a crafted file.
Artifex Mujs
1 EDB exploit
1 Github repository
5.5
CVSSv3
CVE-2018-6191
The js_strtod function in jsdtoa.c in Artifex MuJS up to and including 1.0.2 has an integer overflow because of incorrect exponent validation.
Artifex Mujs
1 EDB exploit
1 Github repository
7.5
CVSSv3
CVE-2016-9017
Artifex Software, Inc. MuJS before a5c747f1d40e8d6659a37a8d25f13fb5acf8e767 allows context-dependent malicious users to obtain sensitive information by using the "opname in crafted JavaScript file" approach, related to an "Out-of-Bounds read" issue affecting t...
Artifex Mujs
7.5
CVSSv3
CVE-2016-9109
Artifex Software MuJS allows malicious users to cause a denial of service (crash) via vectors related to incomplete escape sequences. NOTE: this vulnerability exists due to an incomplete fix for CVE-2016-7563.
Artifex Mujs -
7.5
CVSSv3
CVE-2016-9136
Artifex Software, Inc. MuJS before a0ceaf5050faf419401fe1b83acfa950ec8a8a89 allows context-dependent malicious users to obtain sensitive information by using the "crafted JavaScript" approach, related to a "Buffer Over-read" issue.
Artifex Mujs
7.5
CVSSv3
CVE-2016-9294
Artifex Software, Inc. MuJS prior to 5008105780c0b0182ea6eda83ad5598f225be3ee allows context-dependent malicious users to conduct "denial of service (application crash)" attacks by using the "malformed labeled break/continue in JavaScript" approach, related to...
Artifex Mujs
9.8
CVSSv3
CVE-2016-7504
A use-after-free vulnerability was observed in Rp_toString function of Artifex Software, Inc. MuJS prior to 5c337af4b3df80cf967e4f9f6a21522de84b392a. A successful exploitation of this issue can lead to code execution or denial of service condition.
Artifex Mujs
7.5
CVSSv3
CVE-2016-7563
The chartorune function in Artifex Software MuJS allows malicious users to cause a denial of service (out-of-bounds read) via a * (asterisk) at the end of the input.
Artifex Mujs -
7.5
CVSSv3
CVE-2016-7564
Heap-based buffer overflow in the Fp_toString function in jsfunction.c in Artifex Software MuJS allows malicious users to cause a denial of service (crash) via crafted input.
Artifex Mujs -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »