CVE-2019-16366

2019-09-1616:09:27

mitre

www.cve.org

9.7 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.4%

JSON

In XS 9.0.0 in Moddable SDK OS180329, there is a heap-based buffer overflow in fxBeginHost in xsAPI.c when called from fxRunDefine in xsRun.c, as demonstrated by crafted JavaScript code to xst.

References

github.com/Moddable-OpenSource/moddable/issues/235