Lucene search
K

The vulnerability of the `ecma_ref_ecma_string` function in the `ecma-helpers-string.c` component of the JavaScript engine for Internet of Things technology, JerryScript, and the IoT.js platform, relates to memory management after its release. This vulnerability allows an attacker to access confidential data, compromise its integrity, and cause service failures.

🗓️ 20 Sep 2021 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec
 bdu_fstec
🔗 bdu.fstec.ru👁 5 Views

Use-after-free in ecma_ref_ecma_string (JerryScript, IoT.js) risks data leakage, integrity loss, and outages.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
CNNVD
JerryScript 资源管理错误漏洞
10 Jun 202100:00
cnnvd
CNVD
JerryScript Post-Release Reuse Vulnerability (CNVD-2021-42988)
12 Jun 202100:00
cnvd
CVE
CVE-2020-23302
10 Jun 202122:12
cve
Cvelist
CVE-2020-23302
10 Jun 202122:12
cvelist
Debian CVE
CVE-2020-23302
10 Jun 202122:12
debiancve
EUVD
EUVD-2020-16050
7 Oct 202500:30
euvd
NVD
CVE-2020-23302
10 Jun 202123:15
nvd
OSV
UBUNTU-CVE-2020-23302
10 Jun 202123:15
osv
Prion
Heap overflow
10 Jun 202123:15
prion
UbuntuCve
CVE-2020-23302
10 Jun 202123:15
ubuntucve
Rows per page
Vulners

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

20 Sep 2021 00:00Current
7.7High risk
Vulners AI Score7.7
CVSS 27.5
CVSS 39.8
EPSS0.01269
5