Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jerryscript vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-41959
JerryScript Git version 14ff5bf does not sufficiently track and release allocated memory via jerry-core/ecma/operations/ecma-regexp-object.c after RegExp, which causes a memory leak.
Jerryscript Jerryscript -
7.1
CVSSv3
CVE-2020-24344
JerryScript up to and including 2.3.0 has a (function({a=arguments}){const arguments}) buffer over-read.
Jerryscript Jerryscript
7.8
CVSSv3
CVE-2020-24345
JerryScript up to and including 2.3.0 allows stack consumption via function a(){new new Proxy(a,{})}JSON.parse("[]",a). NOTE: the vendor states that the problem is the lack of the --stack-limit option
Jerryscript Jerryscript
8.8
CVSSv3
CVE-2021-26195
An issue exists in JerryScript 2.4.0. There is a heap-buffer-overflow in lexer_parse_number in js-lexer.c file.
Jerryscript Jerryscript 2.4.0
6.5
CVSSv3
CVE-2021-26197
An issue exists in JerryScript 2.4.0. There is a SEGV in main_print_unhandled_exception in main-utils.c file.
Jerryscript Jerryscript 2.4.0
6.5
CVSSv3
CVE-2021-26199
An issue exists in JerryScript 2.4.0. There is a heap-use-after-free in ecma_bytecode_ref in ecma-helpers.c file.
Jerryscript Jerryscript 2.4.0
7.5
CVSSv3
CVE-2020-13622
JerryScript 2.2.0 allows malicious users to cause a denial of service (assertion failure) because a property key query for a Proxy object returns unintended data.
Jerryscript Jerryscript 2.2.0
7.5
CVSSv3
CVE-2020-13623
JerryScript 2.2.0 allows malicious users to cause a denial of service (stack consumption) via a proxy operation.
Jerryscript Jerryscript 2.2.0
7.5
CVSSv3
CVE-2020-13649
parser/js/js-scanner.c in JerryScript 2.2.0 mishandles errors during certain out-of-memory conditions, as demonstrated by a scanner_reverse_info_list NULL pointer dereference and a scanner_scan_all assertion failure.
Jerryscript Jerryscript 2.2.0
9.8
CVSSv3
CVE-2020-23302
There is a heap-use-after-free at ecma-helpers-string.c:772 in ecma_ref_ecma_string in JerryScript 2.2.0
Jerryscript Jerryscript 2.2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »