Espruino 2v20 (commit fcc9ba4) was discovered to contain a Stack Overflow via the jspeFactorFunctionCall at...
7.5CVSS
7.8AI Score
0.0005EPSS
Espruino 2v20 (commit fcc9ba4) was discovered to contain an Out-of-bounds Read via jsvStringIteratorPrintfCallback at...
7.5CVSS
7.8AI Score
0.0005EPSS
Buffer Overflow vulnerability found in Espruino 2v05.41 allows an attacker to cause a denial of service via the function jsvGarbageCollectMarkUsed in file...
7.5CVSS
7.3AI Score
0.001EPSS
An issue found in Espruino Espruino 6ea4c0a allows an attacker to execute arbitrrary code via oldFunc parameter of the jswrap_object.c:jswrap_function_replacewith...
9.8CVSS
7.8AI Score
0.002EPSS
Espruino 2v11.251 was discovered to contain a stack buffer overflow via src/jsvar.c in...
7.8CVSS
7.8AI Score
0.001EPSS
Espruino 2v11 release was discovered to contain a stack buffer overflow via src/jsvar.c in...
7.8CVSS
7.8AI Score
0.001EPSS
Espruino 2v11.251 was discovered to contain a SEGV vulnerability via src/jsinteractive.c in...
5.5CVSS
5.5AI Score
0.001EPSS
Espruino 2v11.251 was discovered to contain a stack buffer overflow via src/jsvar.c in...
7.8CVSS
7.9AI Score
0.001EPSS
Espruino 2v10.246 was discovered to contain a stack buffer overflow via src/jsutils.c in...
7.8CVSS
7.8AI Score
0.001EPSS
Buffer overflow vulnerability in function jsvGetStringChars in Espruino before RELEASE_2V09, allows remote attackers to execute arbitrary...
9.8CVSS
8.4AI Score
0.006EPSS
There is a stack-based buffer over-read in the jsfNameFromString function of jsflash.c in Espruino 2V00, leading to a denial of service or possibly unspecified other impact via a crafted js...
7.8CVSS
8AI Score
0.001EPSS
Espruino before 1.99 allows attackers to cause a denial of service (application crash) with a user crafted input file via a Buffer Overflow during syntax parsing of "VOID" tokens in...
5.5CVSS
7.2AI Score
0.001EPSS
Espruino before 1.98 allows attackers to cause a denial of service (application crash) with a user crafted input file via a NULL pointer dereference during syntax parsing. This was addressed by adding validation for a debug trace print statement in...
5.5CVSS
7.1AI Score
0.001EPSS
Espruino before 1.99 allows attackers to cause a denial of service (application crash) and potential Information Disclosure with a user crafted input file via a Buffer Overflow during syntax parsing because strncpy is misused in...
7.1CVSS
7.1AI Score
0.001EPSS
Espruino before 1.99 allows attackers to cause a denial of service (application crash) with a user crafted input file via a Buffer Overflow during syntax parsing because of a missing check for stack exhaustion with many '{' characters in...
5.5CVSS
7.3AI Score
0.001EPSS
Espruino before 1.99 allows attackers to cause a denial of service (application crash) with a user crafted input file via an integer overflow during syntax parsing. This was addressed by fixing stack size detection on Linux in...
5.5CVSS
7.3AI Score
0.001EPSS
Espruino before 1.99 allows attackers to cause a denial of service (application crash) with a user crafted input file via a Buffer Overflow during syntax parsing because a check for '\0' is made for the wrong array element in...
5.5CVSS
7.3AI Score
0.001EPSS
Espruino before 1.98 allows attackers to cause a denial of service (application crash) with a user crafted input file via an Out-of-bounds Read during syntax parsing in which certain height validation is missing in...
5.5CVSS
7.2AI Score
0.001EPSS
Espruino before 1.99 allows attackers to cause a denial of service (application crash) and a potential Information Disclosure with user crafted input files via a Buffer Overflow or Out-of-bounds Read during syntax parsing of certain for loops in...
7.1CVSS
7.3AI Score
0.001EPSS
Espruino before 1.99 allows attackers to cause a denial of service (application crash) and a potential Escalation of Privileges with a user crafted input file via a Buffer Overflow during syntax parsing, because strncat is...
7.8CVSS
7.3AI Score
0.002EPSS