Microsoft ChakraCore has an unspecified vulnerability

Microsoft ChakraCore is the core part of an open source Chakra JavaScript scripting engine used in the Edge browser by Microsoft USA and can also be used as a standalone JavaScript engine. The vulnerability stems from an assertion pFuncBody-GetYieldRegister == oldYieldRegister failure in...

JerryScript has an unspecified vulnerability (CNVD-2022-07247)

JerryScript is a lightweight JavaScript engine from the JerryScript Jerryscript project. a security vulnerability exists in JerryScript version 3.0.0, which stems from a SEGV vulnerability in /jerry-core/ecma/base/ecma-gc.c. An attacker could exploit this vulnerability to cause a denial of servic...

Jerryscript has an unspecified vulnerability (CNVD-2022-07249)

JerryScript is a lightweight JavaScript engine from the JerryScript Jerryscript project. version 3.0.0 of Jerryscript has a security vulnerability that stems from the existence of an assertion failure in ecma-helpers-value. No detailed vulnerability details are available...

Jerryscript has an unspecified vulnerability (CNVD-2022-07248)

JerryScript, a lightweight JavaScript engine from the JerryScript project, has a security vulnerability in Jerryscript version 3.0.0, which stems from a buffer overflow in /jerry-core/ecma/base/ecma-lcache.c in ecma lcachelookup in /jerry-core/ecma/base/ecma-lcache.c. A stack-based buffer overflo...

Unspecified vulnerability in Moddable SDK (CNVD-2022-08281)

Moddable SDK is a software development kit SDK for IoT embedded software development from Moddable, Inc. and XS is one of the embedded JavaScript engines. A security vulnerability exists in Moddable SDK, which stems from a SEGV vulnerability discovered in Moddable SDK v11.5.0 via the xs source...

JerryScript has an unspecified vulnerability (CNVD-2022-07242)

JerryScript, a lightweight JavaScript engine from the JerryScript project, has a security vulnerability in JerryScript 3.0.0, which stems from /parser/js/js-scanner.cscannerscan statementend has an assertion contextp-stacktopuint8 == SCANSTACKTRYSTATEMENT || contextp-stacktopuint8 ==...

JerryScript has an unspecified vulnerability (CNVD-2022-07244)

JerryScript, a lightweight JavaScript engine from the JerryScript project, has a security vulnerability in version 3.0.0 of JerryScript, which originates in /jerry-core/ecma/operations/ecma-objects.c The ecmaobjectcheckclassnameisobject objp declaration in /jerry-core/operations/ecma-objects.c...

JerryScript has an unspecified vulnerability (CNVD-2022-07243)

JerryScript, a lightweight JavaScript engine from the JerryScript project, has a security vulnerability in JerryScript 3.0.0, which stems from an assertion in /jerry-core/parser/js/js-parser-expr.c flags & PARSERPATTERNHASRESTELEMENT fails. No details of the vulnerability are currently provided...

JerryScript has an unspecified vulnerability (CNVD-2022-07240)

JerryScript, a lightweight JavaScript engine from the JerryScript project, is vulnerable in JerryScript 3.0.0, which originates in /base/ecma-helpers.cecmagetlexenvtype An assertion ecmaislexicalenvironment objectp fails at /base/ecma-helpers.c ecmagetlexenvtype. No detailed vulnerability details...

JerryScript has an unspecified vulnerability (CNVD-2022-07241)

JerryScript, a lightweight JavaScript engine from the JerryScript project, has a security vulnerability in JerryScript 3.0.0, which originates in /parser/js/js-parser-expr.cparserparseclassbody. classbody has a failed assertion opts & PARSERCLASSLITERALCTORPRESENT. No detailed vulnerability detai...

JerryScript js-scanner-util.c denial-of-service vulnerability

JerryScript, a lightweight JavaScript engine from the JerryScript project, has a denial-of-service vulnerability in version 3.0.0, which stems from an assertion failure in /jerry-core/parser/js/js-scanner-util.c. An attacker could use this vulnerability to launch a denial of service...

JerryScript js-parser-expr.c denial-of-service vulnerability

JerryScript is a lightweight JavaScript engine from the JerryScript project.JerryScript has a denial of service vulnerability in version 3.0.0, which stems from an assertion failure in /jerry-core/parser/js/js-parser-expr.c. An attacker could use this vulnerability to launch a denial of service...

JerryScript ecma-literal-storage.c denial of service vulnerability

JerryScript, a lightweight JavaScript engine from the JerryScript project, has a denial-of-service vulnerability in version 3.0.0, which stems from a failed assertion in /jerry-core/ecma/base/ecma-literal-storage.c. case, an attacker could use this vulnerability to launch a denial of service...

Jerryscript stack buffer overflow vulnerability

JerryScript is a lightweight JavaScript engine from the JerryScript project. jerryscript has a stack buffer overflow vulnerability in version 3.0.0, which stems from vmloop.ltopriv.304 in /jerry-core/vm/vm.c when handling untrusted input with a boundary error. An attacker could exploit this...

JerryScript ecma-helpers-string.c Denial of Service Vulnerability

JerryScript is a lightweight JavaScript engine from the JerryScript project.JerryScript has a denial-of-service vulnerability in version 3.0.0, which stems from a failed assertion in /base/ecma-helpers-string.c. An attacker could use this vulnerability to launch a denial of service...

JerryScript ecma-objects.c denial of service vulnerability

JerryScript, a lightweight JavaScript engine from the JerryScript project, has a denial-of-service vulnerability in version 3.0.0, which stems from a failed assertion in /jerry-core/ecma/operations/ecma-objects.c , an attacker could use this vulnerability to launch a denial of service...

JerryScript ecma-helpers-value.c denial-of-service vulnerability

JerryScript, a lightweight JavaScript engine from the JerryScript project, has a denial-of-service vulnerability in version 3.0.0, which stems from a failed assertion in /jerry-core/ecma/base/ecma-helpers-value.c , an attacker could use this vulnerability to launch a denial of service...

JerryScript lit-strings.c denial-of-service vulnerability

JerryScript is a lightweight JavaScript engine from the JerryScript project.JerryScript has a denial-of-service vulnerability in version 3.0.0, which stems from an assertion failure in /jerry-core/lit/lit-strings.c. An attacker could use this vulnerability to launch a denial of service...

JerryScript ecma-helpers.c denial of service vulnerability

JerryScript, a lightweight JavaScript engine from the JerryScript project, has a denial-of-service vulnerability in version 3.0.0, which stems from a failed assertion in /jerry-core/ecma/base/ecma-helpers.c. An attacker could exploit this vulnerability to launch a denial of service...

Microsoft ChakraCore 安全漏洞

Microsoft ChakraCore is the core part of an open source Chakra JavaScript scripting engine used in the Edge browser by Microsoft USA and can also be used as a standalone JavaScript engine. The vulnerability stems from an assertion pFuncBody-GetYieldRegister == oldYieldRegister failure in...