Espruino prior to 1.98 allows malicious users to cause a denial of service (application crash) with a user crafted input file via an Out-of-bounds Read during syntax parsing in which certain height validation is missing in libs/graphics/jswrap_graphics.c.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
espruino espruino |