CVE-2021-33446

CVE-2021-33446 affects Cesanta’s mJS embedded JavaScript engine (mJS/mjs.c). The issue is a NULL pointer dereference in function mjs_next(), leading to a potential crash. Public documentation in the NVD entry notes a MEDIUM base CVSS score (AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H) with LOCAL attack v...

CVE-2021-33447

CVE-2021-33447 affects Cesanta’s embedded JavaScript engine mJS (mJS) with a NULL pointer dereference in function mjs_print() of file mjs.c . Multiple connected sources (NVD, Red Hat CNS, OSV, CVE catalogs) confirm the issue, described as a NULL pointer dereference in mjs_print(). Impact details ...

CVE-2021-33449

CVE-2021-33449 affects the Cesanta mJS embedded JavaScript engine (mJS) — specifically the mjs_bcode_part_get_by_offset() function in mjs.c, where a NULL pointer dereference is reported. The entry notes a local attack vector with the vulnerability potentially causing an availability impact (crash...

CVE-2021-33442

An issue was discovered in mjs mJS: Restricted JavaScript engine, ES6 JavaScript version 6. There is NULL pointer dereference in jsonprintf in mjs.c...

CVE-2021-33441

The CVE-2021-33441 issue affects Cesanta mJS (mjs.c) in the mJS restricted JavaScript engine. A NULL pointer dereference in exec_expr() is reported, leading to potential crashes (availability impact). The connected records confirm the vulnerability across multiple sources (NVD/Red Hat/Open Source...

CVE-2021-33439

CVE-2021-33439 describes an integer overflow in the mjs (mJS: Restricted JavaScript engine) project, specifically in the function gc_compact_strings() within mjs.c. The vulnerability affects the embedded JavaScript engine used in ES6 contexts and is documented across multiple sources (NVD, Red Ha...

CVE-2021-33438

CVE-2021-33438 : An issue in the mjs (mJS: Restricted JavaScript engine) ES6 engine has a stack buffer overflow in the function json_parse_array() within mjs.c. The vulnerability is documented across multiple feeds (NVD/Red Hat/EUVD/OSV etc.). The vulnerability is described without public exploit...

Cesanta MJS 代码问题漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

Cesanta MJS 代码问题漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

PT-2022-10233 · Mjs · Mjs

Name of the Vulnerable Software and Affected Versions: mjs affected versions not specified Description: An issue was discovered in mjs, a Restricted JavaScript engine, affecting ES6 JavaScript version 6. The problem lies in memory leaks within the frozen cb function in mjs.c. Recommendations: At...

Cesanta MJS 缓冲区错误漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

Cesanta MJS 缓冲区错误漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

Cesanta MJS 缓冲区错误漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

Cesanta MJS 代码问题漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

Cesanta MJS 安全漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

Cesanta MJS 代码问题漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

CVE-2022-1232

Type confusion in V8 in Google Chrome prior to 100.0.4896.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

UBUNTU-CVE-2022-1096

Type confusion in V8 in Google Chrome prior to 99.0.4844.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

UBUNTU-CVE-2022-1134

Type confusion in V8 in Google Chrome prior to 100.0.4896.60 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to type mixing errors. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...