435 matches found
CVE-2024-24189
Jsish v3.5.0 commit 42c694c was discovered to contain a use-after-free via the SplitChar at ./src/jsiUtils.c...
CVE-2021-46494
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsiValueLookupBase in src/jsiValue.c. This vulnerability can lead to a Denial of Service DoS...
CVE-2021-46491
Jsish v3.5.0 was discovered to contain a SEGV vulnerability via JsiCommandPkgOpts at src/jsiCmds.c. This vulnerability can lead to a Denial of Service DoS...
CVE-2021-46505
Jsish v3.5.0 was discovered to contain a stack overflow via /usr/lib/x8664-linux-gnu/libasan.so.4+0x5b1e5...
CVE-2021-46487
Jsish v3.5.0 was discovered to contain a SEGV vulnerability via /lib/x8664-linux-gnu/libc.so.6+0x18e506. This vulnerability can lead to a Denial of Service DoS...
CVE-2021-46501
Jsish v3.5.0 was discovered to contain a heap-use-after-free via SortSubCmd in src/jsiArray.c. This vulnerability can lead to a Denial of Service DoS...
CVE-2021-46490
Jsish v3.5.0 was discovered to contain a SEGV vulnerability via NumberConstructor at src/jsiNumber.c. This vulnerability can lead to a Denial of Service DoS...
CVE-2021-46489
Jsish v3.5.0 was discovered to contain a heap-use-after-free via JsiDecrRefCount in src/jsiValue.c. This vulnerability can lead to a Denial of Service DoS...
CVE-2020-22873
Buffer overflow vulnerability in function NumberToPrecisionCmd in jsish before 3.0.7, allows remote attackers to execute arbitrary code...
CVE-2020-22874
Integer overflow vulnerability in function JsiObjArraySizer in jsish before 3.0.8, allows remote attackers to execute arbitrary code...
CVE-2020-23259
An issue found in Jsish v.3.0.11 and before allows an attacker to cause a denial of service via the JsiStrlen function in the src/jsiChar.c file...
CVE-2020-23258
An issue found in Jsish v.3.0.11 allows a remote attacker to cause a denial of service via the JsiValueIsNumber function in ./src/jsiValue.c file...
CVE-2020-22907
Stack overflow vulnerability in function jsievalcodesub in jsish before 3.0.18, allows remote attackers to cause a Denial of Service via a crafted value to the execute parameter...
CVE-2019-1010169
Jsish 2.4.77 2.0477 is affected by: Out-of-bounds Read. The impact is: denial of service. The component is: function lexergetchar jsiLexer.c:9. The attack vector is: executing crafted javascript code. The fixed version is: 2.4.78...
CVE-2019-1010173
Jsish 2.4.84 2.0484 is affected by: Reachable Assertion. The impact is: denial of service. The component is: function JsiValueArrayIndex jsiValue.c:366. The attack vector is: executing crafted javascript code. The fixed version is: after commit 738ead193aff380a7e3d7ffb8e11e446f76867f3...
CVE-2019-1010172
Jsish 2.4.84 2.0484 is affected by: Uncontrolled Resource Consumption. The impact is: denial of service. The component is: function jsiValueGetString jsiUtils.c. The attack vector is: executing crafted javascript code. The fixed version is: after commit f3a8096e0ce44bbf36c1dcb6e603adf9c8670c39...
CVE-2019-1010170
Jsish 2.4.77 2.0477 is affected by: Use After Free. The impact is: denial of service. The component is: function JsiObjFree jsiObj.c:230. The attack vector is: executing crafted javascript code. The fixed version is: 2.4.78...
CVE-2019-1010171
Jsish 2.4.83 2.0483 is affected by: Nullpointer dereference. The impact is: denial of service. The component is: function jsiDumpFunctions jsiEval.c:567. The attack vector is: executing crafted javascript code. The fixed version is: 2.4.84...
CVE-2018-1000655
Jsish version 2.4.65 contains a CWE-476: NULL Pointer Dereference vulnerability in Function jsiValueCopyMove from jsiValue.c:240 that can result in Crash due to segmentation fault. This attack appear to be exploitable via a crafted javascript code. This vulnerability appears to have been fixed in...
CVE-2018-1000663
jsish version 2.4.70 2.047 contains a Buffer Overflow vulnerability in function jsievalcode from jsiEval.c that can result in Crash due to segmentation fault. This attack appear to be exploitable via The victim must execute crafted javascript code...