Lucene search
K

10 matches found

BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.3 views

The vulnerability in the `parser_parse_function_arguments` function of the `js-parser.c` component of the JavaScript Internet of Things engine, JerryScript, and the IoT.js platform, related to the insufficient use of the `assert()` function, allows a malicious actor to cause a service failure.

The vulnerability of the parserparsefunctionarguments function in the js-parser.c component of the JavaScript Internet of Things engine, JerryScript, and the IoT.js platform is related to the insufficient use of the assert function. Exploiting this vulnerability could allow a remote attacker to...

7.5CVSS7.2AI score0.01083EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.4 views

The vulnerability of the ecma-bytecode-ref function in the ecma-helpers.c component of the JavaScript engine for IoT JerryScript and the IoT.js platform, related to memory usage after deallocation, allows a attacker to trigger a service failure.

The vulnerability of the ecmabytecoderef function in the ecma-helpers.c component of the JavaScript engine for IoT JerryScript and the IoT.js platform is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

6.5CVSS6.5AI score0.00856EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.5 views

The vulnerability in the `lexer_parse_number` function of the `js-lexer.c` component of the JavaScript engine for Internet of Things applications, JerryScript, and the IoT.js platform, related to buffer overflows, allows attackers to access sensitive data, compromise its integrity, and cause service failures.

The vulnerability of the lexerparsenumber function in the js-lexer.c component of the JavaScript engine for the Internet of Things, JerryScript, and the IoT.js platform, is related to buffer overflow attacks. Exploiting this vulnerability could allow an attacker to gain access to confidential dat...

8.8CVSS7.9AI score0.01124EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.2 views

The vulnerability of the `jmem_pools_collect_empty` function in the `jmem-poolman.c` component of the JavaScript Internet of Things engine JerryScript and the IoT.js platform, related to out-of-buffer writing, allows a malicious actor to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the jmempoolscollectempty function in the jmem-poolman.c component of the JavaScript Internet of Things engine, JerryScript, and the IoT.js platform is related to buffer overflow attacks. Exploiting this vulnerability could allow an attacker to gain access to sensitive data,...

9.8CVSS8.1AI score0.01314EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.2 views

The vulnerability of the ecmaRegexpMatch function in the ecma-regexp-object.c component of the JavaScript for Internet of Things technology, JerryScript, and the IoT.js platform, related to writing beyond buffer boundaries, allows attackers to access sensitive data, compromise its integrity, and cause service failures.

The vulnerability of the ecmaRegexpMatch function in the ecma-regexp-object.c component of the JavaScript for Internet of Things technology, JerryScript, and the IoT.js platform, is related to buffer overflow attacks. Exploiting this vulnerability can allow an attacker to gain access to...

9.8CVSS8.1AI score0.01313EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.4 views

The vulnerability in the `parser_parse_statements` function of the `js-parser-statm.c` component of the JavaScript engine for the Internet of Things, JerryScript, and the IoT.js platform, related to the insufficient use of the `assert()` function, allows a attacker to trigger a service failure.

The vulnerability of the parserparsestatements function in the js-parser-statm.c component of the JavaScript engine for the Internet of Things, JerryScript, and the IoT.js platform is related to incorrect comparisons. Exploiting this vulnerability could allow a remote attacker to cause a service...

7.5CVSS7.2AI score0.01083EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.5 views

The vulnerability of the `ecma_ref_ecma_string` function in the `ecma-helpers-string.c` component of the JavaScript engine for Internet of Things technology, JerryScript, and the IoT.js platform, relates to memory management after its release. This vulnerability allows an attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the ecmarefecmastring function in the ecma-helpers-string.c component of the JavaScript framework for Internet of Things applications, JerryScript, and the IoT.js platform, is related to the use of memory after it is released. Exploiting this vulnerability could allow an...

9.8CVSS7.7AI score0.01269EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.4 views

The vulnerability of the `scanner_literal_is_created` function in the `js-scanner-util.c` component of the JavaScript IoT engine for JerryScript and the IoT.js platform is related to the insufficient use of the `assert()` function. This allows a malicious actor to trigger a service failure.

The vulnerability of the scannerliteraliscreated function in the js-scanner-util.c component of the JavaScript IoT scripting engine, JerryScript, and the IoT.js platform is related to the insufficient use of the assert function. Exploiting this vulnerability could allow a remote attacker to cause...

7.5CVSS7.1AI score0.01083EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.6 views

The vulnerability in the `parser_emit_cbc_backward_branch` function of the `js-parser-util.c` component of the JavaScript engine for Internet of Things JerryScript and the IoT.js platform, related to the insufficient use of the `assert()` function, allows a attacker to trigger a service failure.

The vulnerability of the parseremitcbcbackwardbranch function in the js-parser-util.c component of the JavaScript engine for Internet of Things JerryScript and the IoT.js platform is related to the insufficient use of the assert function. Exploiting this vulnerability can allow a remote attacker ...

7.5CVSS7.2AI score0.01083EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.5 views

The vulnerability in the `parser_parse_source` function of the `js-parser.c` component of the JavaScript framework for the Internet of Things, JerryScript, and the IoT.js platform, related to the insufficient use of the `assert()` function, allows a attacker to cause a service failure.

The vulnerability of the parserparsesource function in the js-parser.c component of the JavaScript engine for the Internet of Things, JerryScript, and the IoT.js platform, is related to the insufficient use of the assert function. Exploiting this vulnerability could allow a malicious actor to cau...

7.5CVSS7.2AI score0.01083EPSS
Exploits1References4Affected Software2
Rows per page
Query Builder