Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jerryscript vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-13649
parser/js/js-scanner.c in JerryScript 2.2.0 mishandles errors during certain out-of-memory conditions, as demonstrated by a scanner_reverse_info_list NULL pointer dereference and a scanner_scan_all assertion failure.
Jerryscript Jerryscript 2.2.0
6.8
CVSSv2
CVE-2021-41682
There is a heap-use-after-free at ecma-helpers-string.c:1940 in ecma_compare_ecma_non_direct_strings in JerryScript 2.4.0
Jerryscript Jerryscript 2.4.0
4.3
CVSSv2
CVE-2021-46336
There is an Assertion 'opts & PARSER_CLASS_LITERAL_CTOR_PRESENT' failed at /parser/js/js-parser-expr.c(parser_parse_class_body) in JerryScript 3.0.0.
Jerryscript Jerryscript 3.0.0
5
CVSSv2
CVE-2021-46338
There is an Assertion 'ecma_is_lexical_environment (object_p)' failed at /base/ecma-helpers.c(ecma_get_lex_env_type) in JerryScript 3.0.0.
Jerryscript Jerryscript 3.0.0
4.3
CVSSv2
CVE-2021-46343
There is an Assertion 'context_p->token.type == LEXER_LITERAL' failed at /jerry-core/parser/js/js-parser-expr.c in JerryScript 3.0.0.
Jerryscript Jerryscript 3.0.0
4.3
CVSSv2
CVE-2021-46344
There is an Assertion 'flags & PARSER_PATTERN_HAS_REST_ELEMENT' failed at /jerry-core/parser/js/js-parser-expr.c in JerryScript 3.0.0.
Jerryscript Jerryscript 3.0.0
4.3
CVSSv2
CVE-2021-46346
There is an Assertion 'local_tza == ecma_date_local_time_zone_adjustment (date_value)' failed at /jerry-core/ecma/builtin-objects/ecma-builtin-date-prototype.c(ecma_builtin_date_prototype_dispatch_set):421 in JerryScript 3.0.0.
Jerryscript Jerryscript 3.0.0
4.3
CVSSv2
CVE-2021-46348
There is an Assertion 'ECMA_STRING_IS_REF_EQUALS_TO_ONE (string_p)' failed at /jerry-core/ecma/base/ecma-literal-storage.c in JerryScript 3.0.0.
Jerryscript Jerryscript 3.0.0
6.8
CVSSv2
CVE-2021-44988
Jerryscript v3.0.0 and below exists to contain a stack overflow via ecma_find_named_property in ecma-helpers.c.
Jerryscript Jerryscript 3.0.0
6.8
CVSSv2
CVE-2022-22888
Jerryscript 3.0.0 exists to contain a stack overflow via ecma_op_object_find_own in /ecma/operations/ecma-objects.c.
Jerryscript Jerryscript 3.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »