Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jerryscript jerryscript - vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2021-26194
An issue exists in JerryScript 2.4.0. There is a heap-use-after-free in ecma_is_lexical_environment in the ecma-helpers.c file.
Jerryscript Jerryscript 2.4.0
8.8
CVSSv3
CVE-2021-26195
An issue exists in JerryScript 2.4.0. There is a heap-buffer-overflow in lexer_parse_number in js-lexer.c file.
Jerryscript Jerryscript 2.4.0
6.5
CVSSv3
CVE-2021-26197
An issue exists in JerryScript 2.4.0. There is a SEGV in main_print_unhandled_exception in main-utils.c file.
Jerryscript Jerryscript 2.4.0
6.5
CVSSv3
CVE-2021-26198
An issue exists in JerryScript 2.4.0. There is a SEVG in ecma_deref_bigint in ecma-helpers.c file.
Jerryscript Jerryscript 2.4.0
6.5
CVSSv3
CVE-2021-26199
An issue exists in JerryScript 2.4.0. There is a heap-use-after-free in ecma_bytecode_ref in ecma-helpers.c file.
Jerryscript Jerryscript 2.4.0
7.5
CVSSv3
CVE-2020-14163
An issue exists in ecma/operations/ecma-container-object.c in JerryScript 2.2.0. Operations with key/value pairs did not consider the case where garbage collection is triggered after the key operation but before the value operation, as demonstrated by improper read access to memo...
Jerryscript Jerryscript 2.2.0
9.8
CVSSv3
CVE-2018-11418
An issue exists in JerryScript 1.0. There is a heap-based buffer over-read in the lit_read_code_unit_from_utf8 function via a RegExp("[\\u0020") payload, related to re_parse_char_class in parser/regexp/re-parser.c.
Jerryscript Jerryscript 1.0
9.8
CVSSv3
CVE-2018-11419
An issue exists in JerryScript 1.0. There is a heap-based buffer over-read in the lit_read_code_unit_from_hex function via a RegExp("[\\u0") payload, related to re_parse_char_class in parser/regexp/re-parser.c.
Jerryscript Jerryscript 1.0
7.5
CVSSv3
CVE-2020-13991
vm/opcodes.c in JerryScript 2.2.0 allows malicious users to hijack the flow of control by controlling a register.
Jerryscript Jerryscript 2.2.0
9.8
CVSSv3
CVE-2023-36109
Buffer Overflow vulnerability in JerryScript version 3.0, allows remote malicious users to execute arbitrary code via ecma_stringbuilder_append_raw component at /jerry-core/ecma/base/ecma-helpers-string.c.
Jerryscript Jerryscript 3.0
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »