Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
artifex mujs vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-33797
Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1. An integer overflow happens when js_strtod() reads in floating point exponent, which leads to a buffer overflow in the pointer *d.
Artifex Mujs
9.8
CVSSv3
CVE-2021-45005
Artifex MuJS v1.1.3 exists to contain a heap buffer overflow which is caused by conflicting JumpList of nested try/finally statements.
Artifex Mujs 1.1.3
9.8
CVSSv3
CVE-2019-12798
An issue exists in Artifex MuJS 1.0.5. regcompx in regexp.c does not restrict regular expression program size, leading to an overflow of the parsed syntax list size.
Artifex Mujs 1.0.5
9.8
CVSSv3
CVE-2019-11411
An issue exists in Artifex MuJS 1.0.5. The Number#toFixed() and numtostr implementations in jsnumber.c have a stack-based buffer overflow.
Artifex Mujs 1.0.5
9.8
CVSSv3
CVE-2016-10133
Heap-based buffer overflow in the js_stackoverflow function in jsrun.c in Artifex Software, Inc. MuJS allows malicious users to have unspecified impact by leveraging an error when dropping extra arguments to lightweight functions.
Artifex Mujs
9.8
CVSSv3
CVE-2016-10141
An integer overflow vulnerability was observed in the regemit function in regexp.c in Artifex Software, Inc. MuJS before fa3d30fd18c348bb4b1f3858fb860f4fcd4b2045. The attack requires a regular expression with nested repetition. A successful exploitation of this issue can lead to ...
Artifex Mujs
9.8
CVSSv3
CVE-2016-7504
A use-after-free vulnerability was observed in Rp_toString function of Artifex Software, Inc. MuJS prior to 5c337af4b3df80cf967e4f9f6a21522de84b392a. A successful exploitation of this issue can lead to code execution or denial of service condition.
Artifex Mujs
9.8
CVSSv3
CVE-2016-7505
A buffer overflow vulnerability was observed in divby function of Artifex Software, Inc. MuJS prior to 8c805b4eb19cf2af689c860b77e6111d2ee439d5. A successful exploitation of this issue can lead to code execution or denial of service condition.
Artifex Mujs
8.8
CVSSv3
CVE-2022-44789
A logical issue in O_getOwnPropertyDescriptor() in Artifex MuJS 1.0.0 up to and including 1.3.x prior to 1.3.2 allows an malicious user to achieve Remote Code Execution through memory corruption, via the loading of a crafted JavaScript file.
Artifex Mujs
Debian Debian Linux 11.0
Fedoraproject Fedora 37
1 Github repository
7.8
CVSSv3
CVE-2020-24343
Artifex MuJS up to and including 1.0.7 has a use-after-free in jsrun.c because of unconditional marking in jsgc.c.
Artifex Mujs
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »