jsish 2.4.74 2.0474 is affected by: CWE-476: NULL Pointer Dereference. The impact is: denial of service. The component is: function Jsi_StrcmpDict (jsiChar.c:121). The attack vector is: The victim must execute crafted javascript code. The fixed version is: 2.4.77.
[
{
"product": "jsi",
"vendor": "jsi",
"versions": [
{
"status": "affected",
"version": "2.4.74"
},
{
"status": "affected",
"version": "2.0474 [fixed: 2.4.77]"
}
]
}
]