Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jerryscript vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2023-31921
Jerryscript 3.0 (commit 05dbbd1) exists to contain an Assertion Failure via the ecma_big_uint_div_mod at jerry-core/ecma/operations/ecma-big-uint.c.
Jerryscript Jerryscript 3.0.0
9.1
CVSSv3
CVE-2020-29657
In JerryScript 2.3.0, there is an out-of-bounds read in main_print_unhandled_exception in the main-utils.c file.
Jerryscript Jerryscript 2.3.0
5.5
CVSSv3
CVE-2021-46336
There is an Assertion 'opts & PARSER_CLASS_LITERAL_CTOR_PRESENT' failed at /parser/js/js-parser-expr.c(parser_parse_class_body) in JerryScript 3.0.0.
Jerryscript Jerryscript 3.0.0
5.5
CVSSv3
CVE-2021-46346
There is an Assertion 'local_tza == ecma_date_local_time_zone_adjustment (date_value)' failed at /jerry-core/ecma/builtin-objects/ecma-builtin-date-prototype.c(ecma_builtin_date_prototype_dispatch_set):421 in JerryScript 3.0.0.
Jerryscript Jerryscript 3.0.0
7.8
CVSSv3
CVE-2022-22888
Jerryscript 3.0.0 exists to contain a stack overflow via ecma_op_object_find_own in /ecma/operations/ecma-objects.c.
Jerryscript Jerryscript 3.0.0
9.8
CVSSv3
CVE-2017-18212
An issue exists in JerryScript 1.0. There is a heap-based buffer over-read in the lit_read_code_unit_from_hex function in lit/lit-char-helpers.c via a RegExp("[\x0"); payload.
Jerryscript Jerryscript 1.0
5.5
CVSSv3
CVE-2021-46340
There is an Assertion 'context_p->stack_top_uint8 == SCAN_STACK_TRY_STATEMENT || context_p->stack_top_uint8 == SCAN_STACK_CATCH_STATEMENT' failed at /parser/js/js-scanner.c(scanner_scan_statement_end) in JerryScript 3.0.0.
Jerryscript Jerryscript 3.0.0
6.5
CVSSv3
CVE-2018-1000636
JerryScript version Tested on commit f86d7459d195c8ba58479d1861b0cc726c8b3793. Analysing history it seems that the issue has been present since commit 64a340ffeb8809b2b66bbe32fd443a8b79fdd860 contains a CWE-476: NULL Pointer Dereference vulnerability in Triggering undefined behav...
Jerryscript Jerryscript 1.0
7.5
CVSSv3
CVE-2020-13622
JerryScript 2.2.0 allows malicious users to cause a denial of service (assertion failure) because a property key query for a Proxy object returns unintended data.
Jerryscript Jerryscript 2.2.0
5.5
CVSSv3
CVE-2023-31914
Jerryscript 3.0 (commit 05dbbd1) exists to contain out-of-memory issue in malloc.
Jerryscript Jerryscript 3.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »