Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jerryscript jerryscript vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-26194
An issue exists in JerryScript 2.4.0. There is a heap-use-after-free in ecma_is_lexical_environment in the ecma-helpers.c file.
Jerryscript Jerryscript 2.4.0
6.8
CVSSv2
CVE-2021-26195
An issue exists in JerryScript 2.4.0. There is a heap-buffer-overflow in lexer_parse_number in js-lexer.c file.
Jerryscript Jerryscript 2.4.0
4.3
CVSSv2
CVE-2021-26197
An issue exists in JerryScript 2.4.0. There is a SEGV in main_print_unhandled_exception in main-utils.c file.
Jerryscript Jerryscript 2.4.0
4.3
CVSSv2
CVE-2021-26198
An issue exists in JerryScript 2.4.0. There is a SEVG in ecma_deref_bigint in ecma-helpers.c file.
Jerryscript Jerryscript 2.4.0
4.3
CVSSv2
CVE-2021-26199
An issue exists in JerryScript 2.4.0. There is a heap-use-after-free in ecma_bytecode_ref in ecma-helpers.c file.
Jerryscript Jerryscript 2.4.0
5
CVSSv2
CVE-2020-14163
An issue exists in ecma/operations/ecma-container-object.c in JerryScript 2.2.0. Operations with key/value pairs did not consider the case where garbage collection is triggered after the key operation but before the value operation, as demonstrated by improper read access to memo...
Jerryscript Jerryscript 2.2.0
7.5
CVSSv2
CVE-2018-11418
An issue exists in JerryScript 1.0. There is a heap-based buffer over-read in the lit_read_code_unit_from_utf8 function via a RegExp("[\\u0020") payload, related to re_parse_char_class in parser/regexp/re-parser.c.
Jerryscript Jerryscript 1.0
7.5
CVSSv2
CVE-2018-11419
An issue exists in JerryScript 1.0. There is a heap-based buffer over-read in the lit_read_code_unit_from_hex function via a RegExp("[\\u0") payload, related to re_parse_char_class in parser/regexp/re-parser.c.
Jerryscript Jerryscript 1.0
5
CVSSv2
CVE-2020-13991
vm/opcodes.c in JerryScript 2.2.0 allows malicious users to hijack the flow of control by controlling a register.
Jerryscript Jerryscript 2.2.0
NA
CVE-2023-36109
Buffer Overflow vulnerability in JerryScript version 3.0, allows remote malicious users to execute arbitrary code via ecma_stringbuilder_append_raw component at /jerry-core/ecma/base/ecma-helpers-string.c.
Jerryscript Jerryscript 3.0
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »