Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

333 matches found

OSV
OSVadded 2025/10/16 4:15 p.m.0 views

CVE-2025-62494

A type confusion vulnerability exists in the handling of the string addition + operation within the QuickJS engine. The code first checks if the left-hand operand is a string. It then attempts to convert the right-hand operand to a primitive value using JSToPrimitiveFree. This conversion can...

8.8CVSS6.3AI score
Exploits0References2
OSV
OSVadded 2025/10/16 4:15 p.m.0 views

CVE-2025-62491

A Use-After-Free UAF vulnerability exists in the QuickJS engine's standard library when iterating over the global list of unhandled rejected promises ts-rejectedpromiselist. The function jsstdpromiserejectioncheck attempts to iterate over the rejectedpromiselist to report unhandled rejections usi...

8.8CVSS6AI score
Exploits0References2
OSV
OSVadded 2025/10/16 4:15 p.m.2 views

UBUNTU-CVE-2025-62495

An integer overflow vulnerability exists in the QuickJS regular expression engine libregexp due to an inconsistent representation of the bytecode buffer size. The regular expression bytecode is stored in a DynBuf structure, which correctly uses a $\textsize\textt$ an unsigned type, typically...

8.8CVSS6.1AI score0.00028EPSS
Exploits1References4
OSV
OSVadded 2025/10/16 4:15 p.m.1 views

UBUNTU-CVE-2025-62494

A type confusion vulnerability exists in the handling of the string addition + operation within the QuickJS engine. The code first checks if the left-hand operand is a string. It then attempts to convert the right-hand operand to a primitive value using JSToPrimitiveFree. This conversion can...

8.8CVSS6.3AI score0.00017EPSS
Exploits1References4
OSV
OSVadded 2025/10/16 4:15 p.m.0 views

UBUNTU-CVE-2025-62490

In quickjs, in jsprintobject, when printing an array, the function first fetches the array length and then loops over it. The issue is, printing a value is not side-effect free. An attacker-defined callback could run during jsprintvalue, during which the array could get resized and len1 become ou...

8.8CVSS5.8AI score0.00028EPSS
Exploits1References4
OSV
OSVadded 2025/10/16 4:15 p.m.2 views

UBUNTU-CVE-2025-62493

A vulnerability exists in the QuickJS engine's BigInt string conversion logic jsbiginttostring1 due to an incorrect calculation of the required number of digits, which in turn leads to reading memory past the allocated BigInt structure. The function determines the number of characters ndigits...

6.5CVSS5.8AI score0.0002EPSS
Exploits1References4
OSV
OSVadded 2025/10/16 4:15 p.m.0 views

UBUNTU-CVE-2025-62496

A vulnerability exists in the QuickJS engine's BigInt string parsing logic jsbigintfromstring when attempting to create a BigInt from a string with an excessively large number of digits. The function calculates the necessary number of bits nbits required to store the BigInt using the formula:...

8.8CVSS6AI score0.00031EPSS
Exploits1References4
OSV
OSVadded 2025/10/16 4:15 p.m.1 views

UBUNTU-CVE-2025-62492

A vulnerability stemming from floating-point arithmetic precision errors exists in the QuickJS engine's implementation of TypedArray.prototype.indexOf when a negative fromIndex argument is supplied. The fromIndex argument read as a double variable, $d$ is used to calculate the starting position f...

6.5CVSS6AI score0.00019EPSS
Exploits1References4
OSV
OSVadded 2025/10/16 4:15 p.m.0 views

UBUNTU-CVE-2025-62491

A Use-After-Free UAF vulnerability exists in the QuickJS engine's standard library when iterating over the global list of unhandled rejected promises ts-rejectedpromiselist. The function jsstdpromiserejectioncheck attempts to iterate over the rejectedpromiselist to report unhandled rejections usi...

8.8CVSS5.9AI score0.00028EPSS
Exploits1References4
Cvelist
Cvelistadded 2025/10/16 3:52 p.m.5 views

CVE-2025-62496 Integer overflow in js_bigint_from_string in QuickJS

A vulnerability exists in the QuickJS engine's BigInt string parsing logic jsbigintfromstring when attempting to create a BigInt from a string with an excessively large number of digits. The function calculates the necessary number of bits nbits required to store the BigInt using the formula:...

7.1CVSS0.00031EPSS
Exploits1References2
Debian CVE
Debian CVEadded 2025/10/16 3:52 p.m.4 views

CVE-2025-62496

A vulnerability exists in the QuickJS engine's BigInt string parsing logic jsbigintfromstring when attempting to create a BigInt from a string with an excessively large number of digits. The function calculates the necessary number of bits nbits required to store the BigInt using the formula:...

8.8CVSS5.6AI score0.00031EPSS
Exploits1
CVE
CVEadded 2025/10/16 3:52 p.m.7 views

CVE-2025-62496

The CVE refers to QuickJS: BigInt parsing in js_bigint_from_string. When converting a decimal string with an extremely large number of digits, the code computes n_bits as (n_digits × 27 + 7) / 8. For very large inputs (e.g., tens of millions of digits), this intermediate value overflows a 32-bit ...

8.8CVSS6.8AI score0.00031EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2025/10/16 3:52 p.m.1 views

CVE-2025-62496 Integer overflow in js_bigint_from_string in QuickJS

A vulnerability exists in the QuickJS engine's BigInt string parsing logic jsbigintfromstring when attempting to create a BigInt from a string with an excessively large number of digits. The function calculates the necessary number of bits nbits required to store the BigInt using the formula:...

7.1CVSS6.8AI score0.00031EPSS
Exploits1References2
AlpineLinux
AlpineLinuxadded 2025/10/16 3:52 p.m.3 views

CVE-2025-62496

A vulnerability exists in the QuickJS engine's BigInt string parsing logic jsbigintfromstring when attempting to create a BigInt from a string with an excessively large number of digits. The function calculates the necessary number of bits nbits required to store the BigInt using the formula:...

8.8CVSS6.8AI score0.00031EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2025/10/16 3:51 p.m.1 views

CVE-2025-62495 Type confusion in string addition in QuickJS

An integer overflow vulnerability exists in the QuickJS regular expression engine libregexp due to an inconsistent representation of the bytecode buffer size. The regular expression bytecode is stored in a DynBuf structure, which correctly uses a $\textsize\textt$ an unsigned type, typically...

7.1CVSS7.1AI score0.00028EPSS
Exploits1References2
Debian CVE
Debian CVEadded 2025/10/16 3:51 p.m.4 views

CVE-2025-62495

An integer overflow vulnerability exists in the QuickJS regular expression engine libregexp due to an inconsistent representation of the bytecode buffer size. The regular expression bytecode is stored in a DynBuf structure, which correctly uses a $\textsize\textt$ an unsigned type, typically...

8.8CVSS5.7AI score0.00028EPSS
Exploits1
Cvelist
Cvelistadded 2025/10/16 3:51 p.m.6 views

CVE-2025-62495 Type confusion in string addition in QuickJS

An integer overflow vulnerability exists in the QuickJS regular expression engine libregexp due to an inconsistent representation of the bytecode buffer size. The regular expression bytecode is stored in a DynBuf structure, which correctly uses a $\textsize\textt$ an unsigned type, typically...

7.1CVSS0.00028EPSS
Exploits1References2
AlpineLinux
AlpineLinuxadded 2025/10/16 3:51 p.m.5 views

CVE-2025-62495

An integer overflow vulnerability exists in the QuickJS regular expression engine libregexp due to an inconsistent representation of the bytecode buffer size. The regular expression bytecode is stored in a DynBuf structure, which correctly uses a $\textsize\textt$ an unsigned type, typically...

8.8CVSS7.5AI score0.00028EPSS
Exploits1References2
CVE
CVEadded 2025/10/16 3:51 p.m.17 views

CVE-2025-62495

CVE-2025-62495 describes an integer overflow in QuickJS regExp (libregexp). The DynBuf storing regex bytecode uses size_t, but several internal routines cast the DynBuf size_t to a signed int, so very large/complex patterns can exceed 2^31 bytes. The result is a negative value used for offsets (e...

8.8CVSS7.1AI score0.00028EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2025/10/16 3:51 p.m.1 views

CVE-2025-62494 Type confusion in string addition in QuickJS

A type confusion vulnerability exists in the handling of the string addition + operation within the QuickJS engine. The code first checks if the left-hand operand is a string. It then attempts to convert the right-hand operand to a primitive value using JSToPrimitiveFree. This conversion can...

7.1CVSS7.5AI score0.00017EPSS
Exploits1References2
Rows per page
Query Builder