Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jerryscript vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-46350
There is an Assertion 'ecma_is_value_object (value)' failed at jerryscript/jerry-core/ecma/base/ecma-helpers-value.c in JerryScript 3.0.0.
Jerryscript Jerryscript 3.0.0
4.3
CVSSv2
CVE-2021-46351
There is an Assertion 'local_tza == ecma_date_local_time_zone_adjustment (date_value)' failed at /jerry-core/ecma/builtin-objects/ecma-builtin-date-prototype.c(ecma_builtin_date_prototype_dispatch_set):421 in JerryScript 3.0.0.
Jerryscript Jerryscript 3.0.0
NA
CVE-2023-31906
Jerryscript 3.0.0(commit 1a2c047) exists to contain a heap-buffer-overflow via the component lexer_compare_identifier_to_chars at /jerry-core/parser/js/js-lexer.c.
Jerryscript Jerryscript 3.0.0
NA
CVE-2023-31908
Jerryscript 3.0 (commit 05dbbd1) exists to contain a heap-buffer-overflow via the component ecma_builtin_typedarray_prototype_sort.
Jerryscript Jerryscript 3.0
NA
CVE-2023-31919
Jerryscript 3.0 (commit 05dbbd1) exists to contain an Assertion Failure via the jcontext_raise_exception at jerry-core/jcontext/jcontext.c.
Jerryscript Jerryscript 3.0.0
NA
CVE-2023-31921
Jerryscript 3.0 (commit 05dbbd1) exists to contain an Assertion Failure via the ecma_big_uint_div_mod at jerry-core/ecma/operations/ecma-big-uint.c.
Jerryscript Jerryscript 3.0.0
4.3
CVSSv2
CVE-2021-26194
An issue exists in JerryScript 2.4.0. There is a heap-use-after-free in ecma_is_lexical_environment in the ecma-helpers.c file.
Jerryscript Jerryscript 2.4.0
4.3
CVSSv2
CVE-2021-26198
An issue exists in JerryScript 2.4.0. There is a SEVG in ecma_deref_bigint in ecma-helpers.c file.
Jerryscript Jerryscript 2.4.0
NA
CVE-2023-36109
Buffer Overflow vulnerability in JerryScript version 3.0, allows remote malicious users to execute arbitrary code via ecma_stringbuilder_append_raw component at /jerry-core/ecma/base/ecma-helpers-string.c.
Jerryscript Jerryscript 3.0
1 Github repository
NA
CVE-2023-36201
An issue in JerryscriptProject jerryscript v.3.0.0 allows an malicious user to obtain sensitive information via a crafted script to the arrays.
Jerryscript Jerryscript 3.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »