EUVD-2026-1843

🗓️ 10 Jan 2026 13:02:07Reported by EUVDType

Vulnerability in quickjs-ng up to 0.11.0 causes heap overflow in js_typed_array_constructor; patch c5d80831e51e48a83eab16ea867be87f091783c5.

Reporter	Title	Published	Views	Family All 14
AlpineLinux	CVE-2026-0821	10 Jan 202613:02	–	alpinelinux
Circl	CVE-2026-0821	10 Jan 202614:00	–	circl
CNNVD	QuickJS 安全漏洞	10 Jan 202600:00	–	cnnvd
CVE	CVE-2026-0821	10 Jan 202613:02	–	cve
Cvelist	CVE-2026-0821 quickjs-ng quickjs quickjs.c js_typed_array_constructor heap-based overflow	10 Jan 202613:02	–	cvelist
Debian CVE	CVE-2026-0821	10 Jan 202613:02	–	debiancve
NVD	CVE-2026-0821	10 Jan 202613:15	–	nvd
OSV	DEBIAN-CVE-2026-0821	10 Jan 202613:15	–	osv
OSV	UBUNTU-CVE-2026-0821	10 Jan 202613:15	–	osv
Positive Technologies	PT-2026-2027	10 Jan 202600:00	–	ptsecurity

[
  {
    "enisaIdVendor": [
      {
        "id": "e853d9cf-2257-3f31-b470-17f1643133e2",
        "vendor": {
          "name": "quickjs-ng"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "11802dee-1325-3636-9558-60c7fccc6e3c",
        "product": {
          "name": "QuickJS"
        },
        "product_version": "0.6"
      },
      {
        "id": "1fddbfde-3b96-3738-acee-b5c939d21c7e",
        "product": {
          "name": "QuickJS"
        },
        "product_version": "0.2"
      },
      {
        "id": "68499ed7-eb11-3ed3-9ed7-c54df9e3fe96",
        "product": {
          "name": "QuickJS"
        },
        "product_version": "0.5"
      },
      {
        "id": "69db8538-5bc1-323b-90fa-0f9555940ec8",
        "product": {
          "name": "QuickJS"
        },
        "product_version": "0.11.0"
      },
      {
        "id": "8258726c-2bfe-3d16-a231-eb327e54e85e",
        "product": {
          "name": "QuickJS"
        },
        "product_version": "0.10"
      },
      {
        "id": "84e21e4e-13ef-3a89-bf78-6407dd52edc2",
        "product": {
          "name": "QuickJS"
        },
        "product_version": "0.8"
      },
      {
        "id": "8cacf28d-03cb-32e8-a870-cf576d99beb4",
        "product": {
          "name": "QuickJS"
        },
        "product_version": "0.9"
      },
      {
        "id": "b2b102fe-ea23-360a-83a6-ace1780586cc",
        "product": {
          "name": "QuickJS"
        },
        "product_version": "0.7"
      },
      {
        "id": "bbd818a3-7a13-3d17-8958-c61b7ea19904",
        "product": {
          "name": "QuickJS"
        },
        "product_version": "0.3"
      },
      {
        "id": "c2ac449f-0dac-34c8-9c4d-e54ac725093b",
        "product": {
          "name": "QuickJS"
        },
        "product_version": "0.4"
      },
      {
        "id": "e6df8a21-7bda-3630-9bc9-66a2242b2894",
        "product": {
          "name": "QuickJS"
        },
        "product_version": "0.1"
      }
    ]
  }
]

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2026-0821
github	www.github.com/quickjs-ng/quickjs/issues/1296
github	www.github.com/quickjs-ng/quickjs/issues/1296
github	www.github.com/quickjs-ng/quickjs/pull/1299
github	www.github.com/quickjs-ng/quickjs/commit/c5d80831e51e48a83eab16ea867be87f091783c5
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

10 Jan 2026 13:02Current

7.5High risk

Vulners AI Score7.5

CVSS 46.9

CVSS 3.17.3

CVSS 27.5

CVSS 37.3

EPSS0.00173