Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jerryscript jerryscript 2.3.0 vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2020-24345
JerryScript up to and including 2.3.0 allows stack consumption via function a(){new new Proxy(a,{})}JSON.parse("[]",a). NOTE: the vendor states that the problem is the lack of the --stack-limit option
Jerryscript Jerryscript
570
VMScore
CVE-2020-29657
In JerryScript 2.3.0, there is an out-of-bounds read in main_print_unhandled_exception in the main-utils.c file.
Jerryscript Jerryscript 2.3.0
516
VMScore
CVE-2020-24344
JerryScript up to and including 2.3.0 has a (function({a=arguments}){const arguments}) buffer over-read.
Jerryscript Jerryscript
445
VMScore
CVE-2021-46170
An issue exists in JerryScript commit a6ab5e9. There is an Use-After-Free in lexer_compare_identifier_to_string in js-lexer.c file.
Jerryscript Jerryscript 2.3.0
NA
CVE-2020-24187
An issue exists in ecma-helpers.c in jerryscript version 2.3.0, allows local malicious users to cause a denial of service (DoS) (Null Pointer Dereference).
Jerryscript Jerryscript 2.3.0
NA
CVE-2020-22597
An issue in Jerrscript- project Jerryscrip v. 2.3.0 allows a remote malicious user to execute arbitrary code via the ecma_builtin_array_prototype_object_slice parameter.
Jerryscript Jerryscript 2.3.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started