Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jerryscript jerryscript vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-14163
An issue exists in ecma/operations/ecma-container-object.c in JerryScript 2.2.0. Operations with key/value pairs did not consider the case where garbage collection is triggered after the key operation but before the value operation, as demonstrated by improper read access to memo...
Jerryscript Jerryscript 2.2.0
7.8
CVSSv3
CVE-2017-14749
JerryScript 1.0 allows remote malicious users to cause a denial of service (jmem_heap_alloc_block_internal heap memory corruption) or possibly execute arbitrary code via a crafted .js file, because unrecognized \ characters cause incorrect 0x00 characters in bytecode.literal data...
Jerryscript Jerryscript 1.0
9.8
CVSSv3
CVE-2023-38961
Buffer Overflwo vulnerability in JerryScript Project jerryscript v.3.0.0 allows a remote malicious user to execute arbitrary code via the scanner_is_context_needed component in js-scanner-until.c.
Jerryscript Jerryscript 3.0.0
7.5
CVSSv3
CVE-2017-9250
The lexer_process_char_literal function in jerry-core/parser/js/js-lexer.c in JerryScript 1.0 does not skip memory allocation for empty strings, which allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via malformed JavaScr...
Jerryscript Jerryscript 1.0
7.5
CVSSv3
CVE-2020-23309
There is an Assertion 'context_p->stack_depth == context_p->context_stack_depth' failed at js-parser-statm.c:2756 in parser_parse_statements in JerryScript 2.2.0.
Jerryscript Jerryscript 2.2.0
7.5
CVSSv3
CVE-2020-23314
There is an Assertion 'block_found' failed at js-parser-statm.c:2003 parser_parse_try_statement_end in JerryScript 2.2.0.
Jerryscript Jerryscript 2.2.0
9.8
CVSSv3
CVE-2020-23321
There is a heap-buffer-overflow at lit-strings.c:431 in lit_read_code_unit_from_utf8 in JerryScript 2.2.0.
Jerryscript Jerryscript 2.2.0
9.8
CVSSv3
CVE-2020-23323
There is a heap-buffer-overflow at re-parser.c in re_parse_char_escape in JerryScript 2.2.0.
Jerryscript Jerryscript 2.2.0
7.5
CVSSv3
CVE-2023-34867
Jerryscript 3.0 (commit 05dbbd1) exists to contain an Assertion Failure via the ecma_property_hashmap_create at jerry-core/ecma/base/ecma-property-hashmap.c.
Jerryscript Jerryscript 3.0.0
7.5
CVSSv3
CVE-2023-34868
Jerryscript 3.0 (commit 05dbbd1) exists to contain an Assertion Failure via the parser_parse_for_statement_start at jerry-core/parser/js/js-parser-statm.c.
Jerryscript Jerryscript 3.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »