CVE-2021-33449

CVE-2021-33449 affects the Cesanta mJS embedded JavaScript engine (mJS) — specifically the mjs_bcode_part_get_by_offset() function in mjs.c, where a NULL pointer dereference is reported. The entry notes a local attack vector with the vulnerability potentially causing an availability impact (crash...

CVE-2021-33442

An issue was discovered in mjs mJS: Restricted JavaScript engine, ES6 JavaScript version 6. There is NULL pointer dereference in jsonprintf in mjs.c...

CVE-2021-33441

The CVE-2021-33441 issue affects Cesanta mJS (mjs.c) in the mJS restricted JavaScript engine. A NULL pointer dereference in exec_expr() is reported, leading to potential crashes (availability impact). The connected records confirm the vulnerability across multiple sources (NVD/Red Hat/Open Source...

CVE-2021-33439

CVE-2021-33439 describes an integer overflow in the mjs (mJS: Restricted JavaScript engine) project, specifically in the function gc_compact_strings() within mjs.c. The vulnerability affects the embedded JavaScript engine used in ES6 contexts and is documented across multiple sources (NVD, Red Ha...

CVE-2021-33438

CVE-2021-33438 : An issue in the mjs (mJS: Restricted JavaScript engine) ES6 engine has a stack buffer overflow in the function json_parse_array() within mjs.c. The vulnerability is documented across multiple feeds (NVD/Red Hat/EUVD/OSV etc.). The vulnerability is described without public exploit...

Cesanta MJS 安全漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

Cesanta MJS 代码问题漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

Cesanta MJS 缓冲区错误漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

Cesanta MJS 缓冲区错误漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

Cesanta MJS 代码问题漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

Cesanta MJS 缓冲区错误漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

PT-2022-10233 · Mjs · Mjs

Name of the Vulnerable Software and Affected Versions: mjs affected versions not specified Description: An issue was discovered in mjs, a Restricted JavaScript engine, affecting ES6 JavaScript version 6. The problem lies in memory leaks within the frozen cb function in mjs.c. Recommendations: At...

Cesanta MJS 代码问题漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

Cesanta MJS 代码问题漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

CVE-2022-1232

Type confusion in V8 in Google Chrome prior to 100.0.4896.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

UBUNTU-CVE-2022-1096

Type confusion in V8 in Google Chrome prior to 99.0.4844.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

UBUNTU-CVE-2022-1134

Type confusion in V8 in Google Chrome prior to 100.0.4896.60 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to type mixing errors. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser from Google, Inc. and V8 is one of the open source JavaScript engines. Google Chrome suffers from a resource management error vulnerability, there is no information about this vulnerability yet, please stay tuned to CNNVD or vendor announcements...

CVE-2022-34032

Nginx NJS v0.7.5 was discovered to contain a segmentation violation in the function njsvalueownenumerate at src/njsvalue.c...