CVE-2020-25465

2020-12-0417:15:13

Google

osv.dev

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.8%

JSON

Null Pointer Dereference. in xObjectBindingFromExpression at moddable/xs/sources/xsSyntaxical.c:3419 in Moddable SDK before OS200908 causes a denial of service (SEGV).

CPENameOperatorVersion
moddableeqOS200831
moddableeqOS200904
moddableeqOS200903

Name	Operator	Version
moddable	eq	OS200831
moddable	eq	OS200904
moddable	eq	OS200903

References

github.com/Moddable-OpenSource/moddable/issues/442

github.com/Moddable-OpenSource/moddable/releases/tag/OS200908