Linux Distros Unpatched Vulnerability : CVE-2023-36201

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in JerryscriptProject jerryscript v.3.0.0 allows an attacker to obtain sensitive information via a crafted script to the arrays. CVE-2023-36201 Note th...

Linux Distros Unpatched Vulnerability : CVE-2019-1010176

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - JerryScript commit 4e58ccf68070671e1fff5cd6673f0c1d5b80b166 is affected by: Buffer Overflow. The impact is: denial of service and possibly arbitrary code...

Linux Distros Unpatched Vulnerability : CVE-2018-11418

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromutf8 function via a RegExp\u0020 payload, related t...

Linux Distros Unpatched Vulnerability : CVE-2021-26197

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in JerryScript 2.4.0. There is a SEGV in mainprintunhandledexception in main- utils.c file. CVE-2021-26197 Note that Nessus relies on th...

CVE-2024-29489

Jerryscript 2.4.0 has SEGV at ./jerry-core/ecma/base/ecma-helpers.c:238:58 in ecmagetobjecttype...

CVE-2023-30408

Jerryscript commit 1a2c047 was discovered to contain a segmentation violation via the component build/bin/jerry...

CVE-2023-30410

Jerryscript commit 1a2c047 was discovered to contain a stack overflow via the component ecmaopfunctionconstruct at /operations/ecma-function-object.c...

CVE-2022-22888

Jerryscript 3.0.0 was discovered to contain a stack overflow via ecmaopobjectfindown in /ecma/operations/ecma-objects.c...

CVE-2021-41752

Stack overflow vulnerability in Jerryscript before commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 on Oct 20, 2021 due to an unbounded recursive call to the new opt function...

CVE-2020-14163

An issue was discovered in ecma/operations/ecma-container-object.c in JerryScript 2.2.0. Operations with key/value pairs did not consider the case where garbage collection is triggered after the key operation but before the value operation, as demonstrated by improper read access to memory in...

CVE-2020-13622

JerryScript 2.2.0 allows attackers to cause a denial of service assertion failure because a property key query for a Proxy object returns unintended data...

CVE-2020-29657

In JerryScript 2.3.0, there is an out-of-bounds read in mainprintunhandledexception in the main-utils.c file...

CVE-2020-13623

JerryScript 2.2.0 allows attackers to cause a denial of service stack consumption via a proxy operation...

CVE-2018-1000636

JerryScript version Tested on commit f86d7459d195c8ba58479d1861b0cc726c8b3793. Analysing history it seems that the issue has been present since commit 64a340ffeb8809b2b66bbe32fd443a8b79fdd860 contains a CWE-476: NULL Pointer Dereference vulnerability in Triggering undefined behavior at...

CVE-2018-11418

An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromutf8 function via a RegExp"\\u0020" payload, related to reparsecharclass in parser/regexp/re-parser.c...

Jerryscript 安全漏洞

JerryScript is a lightweight JavaScript engine from the Jerryscript project. A security vulnerability exists in Jerryscript that stems from a component vmloop of jerry-core/vm/vm.c that contains a segmentation violation...

Buffer overflow

Buffer Overflow vulnerability in JerryScript version 3.0, allows remote attackers to execute arbitrary code via ecmastringbuilderappendraw component at /jerry-core/ecma/base/ecma-helpers-string.c...

JerryScript Security Vulnerability

JerryScript is a lightweight JavaScript engine from the Jerryscript project. A security vulnerability exists in JerryScript version 3.0 that originates from allowing remote attackers to execute arbitrary code via the ecmastringbuilderappendraw component in...

CVE-2023-38961

Buffer Overflwo vulnerability in JerryScript Project jerryscript v.3.0.0 allows a remote attacker to execute arbitrary code via the scanneriscontextneeded component in js-scanner-until.c...

PT-2023-26705 · Unknown · Jerryscript

Name of the Vulnerable Software and Affected Versions: jerryscript version 3.0.0 Description: A Buffer Overflow issue allows a remote attacker to execute arbitrary code via the scanner is context needed component in js-scanner-until.c. This enables the attacker to potentially gain control over th...