Lucene search
K

3784 matches found

RedhatCVE
RedhatCVE
added 2026/03/07 1:44 a.m.6 views

CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/06 9:30 p.m.5 views

EUVD-2025-208349

A crafted JavaScript input can trigger an internal assertion failure in QuickJS release 2025-09-13, fixed in commit 1dbba8a88eaa40d15a8a9b70bb1a0b8fb5b552e6 2025-12-11, in file gcdecrefchild in quickjs.c, when executed with the qjs interpreter using the -m option. This leads to an abort SIGABRT...

5.8AI score0.00215EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/06 9:30 p.m.3 views

EUVD-2025-208350

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

5.8AI score0.00284EPSS
Exploits1References2
OSV
OSV
added 2026/03/06 8:16 p.m.3 views

DEBIAN-CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

7.5CVSS5.3AI score0.00284EPSS
Exploits1References1
OSV
OSV
added 2026/03/06 8:16 p.m.4 views

UBUNTU-CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2026/03/06 8:16 p.m.4 views

CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References2
OSV
OSV
added 2026/03/06 7:16 p.m.3 views

DEBIAN-CVE-2025-69653

A crafted JavaScript input can trigger an internal assertion failure in QuickJS release 2025-09-13, fixed in commit 1dbba8a88eaa40d15a8a9b70bb1a0b8fb5b552e6 2025-12-11, in file gcdecrefchild in quickjs.c, when executed with the qjs interpreter using the -m option. This leads to an abort SIGABRT...

6.5CVSS5.3AI score0.00215EPSS
Exploits1References1
OSV
OSV
added 2026/03/06 7:16 p.m.3 views

UBUNTU-CVE-2025-69653

A crafted JavaScript input can trigger an internal assertion failure in QuickJS release 2025-09-13, fixed in commit 1dbba8a88eaa40d15a8a9b70bb1a0b8fb5b552e6 2025-12-11, in file gcdecrefchild in quickjs.c, when executed with the qjs interpreter using the -m option. This leads to an abort SIGABRT...

6.5CVSS5.8AI score0.00215EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2026/03/06 7:16 p.m.3 views

CVE-2025-69653

A crafted JavaScript input can trigger an internal assertion failure in QuickJS release 2025-09-13, fixed in commit 1dbba8a88eaa40d15a8a9b70bb1a0b8fb5b552e6 2025-12-11, in file gcdecrefchild in quickjs.c, when executed with the qjs interpreter using the -m option. This leads to an abort SIGABRT...

6.5CVSS5.8AI score0.00215EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/03/06 12:0 a.m.9 views

QuickJS 安全漏洞

QuickJS is a small and embeddable JavaScript engine developed by the QuickJS open-source project. The QuickJS 2025-09-13 version contains a security vulnerability. This vulnerability stems from a garbage collection internal assertion failure when processing specially crafted JavaScript inputs,...

6.5CVSS5.8AI score0.00215EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/06 12:0 a.m.2 views

CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

5.8AI score0.00284EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/03/06 12:0 a.m.30 views

CVE-2025-69653

A crafted JavaScript input can trigger an internal assertion failure in QuickJS release 2025-09-13, fixed in commit 1dbba8a88eaa40d15a8a9b70bb1a0b8fb5b552e6 2025-12-11, in file gcdecrefchild in quickjs.c, when executed with the qjs interpreter using the -m option. This leads to an abort SIGABRT...

0.00215EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/06 12:0 a.m.8 views

PT-2026-23748

Name of the Vulnerable Software and Affected Versions QuickJS versions 2025-09-13 through 2025-12-11 Description A specially crafted JavaScript input, when executed with the qjs interpreter using the -m option and a limited memory allocation, can lead to an out-of-memory condition. This is follow...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References8
ATTACKERKB
ATTACKERKB
added 2026/03/06 12:0 a.m.3 views

CVE-2025-69653

A crafted JavaScript input can trigger an internal assertion failure in QuickJS release 2025-09-13, fixed in commit 1dbba8a88eaa40d15a8a9b70bb1a0b8fb5b552e6 2025-12-11, in file gcdecrefchild in quickjs.c, when executed with the qjs interpreter using the -m option. This leads to an abort SIGABRT...

5.8AI score0.00215EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/06 12:0 a.m.3 views

CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

5.8AI score0.00284EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2026/03/06 12:0 a.m.4 views

CVE-2025-69653

A crafted JavaScript input can trigger an internal assertion failure in QuickJS release 2025-09-13, fixed in commit 1dbba8a88eaa40d15a8a9b70bb1a0b8fb5b552e6 2025-12-11, in file gcdecrefchild in quickjs.c, when executed with the qjs interpreter using the -m option. This leads to an abort SIGABRT...

6.5CVSS5.2AI score0.00215EPSS
Exploits1
CVE
CVE
added 2026/03/06 12:0 a.m.22 views

CVE-2025-69653

CVE-2025-69653 affects QuickJS: when using the qjs interpreter with the -m option, a crafted JavaScript input can trigger an internal assertion in gc_decref_child (quickjs.c), causing an abort (SIGABRT) during garbage collection and a denial‑of‑service. The issue is fixed in commit 1dbba8a88eaa40...

6.5CVSS5.8AI score0.00215EPSS
Exploits1References1Affected Software1
SUSE CVE
SUSE CVE
added 2026/02/25 12:24 a.m.2 views

SUSE CVE-2026-27623

Valkey is a distributed key-value database. Starting in version 9.0.0 and prior to version 9.0.3, a malicious actor with network access to Valkey can cause the system to abort by triggering an assertion. When processing incoming requests, the Valkey system does not properly reset the networking...

7.5CVSS5.8AI score0.00353EPSS
Exploits0References3
CVE
CVE
added 2026/02/24 12:24 a.m.19 views

CVE-2026-21864

CVE-2026-21864 affects Valkey-Bloom (a Rust module for Valkey KV) where a crafted RESTORE command can trigger a server shutdown due to an assertion during RDB parsing if the VALKEYMODULE_OPTIONS_HANDLE_IO_ERRORS flag is not set. The issue existed despite the module handling parsing; a patch (comm...

7.5CVSS5.5AI score0.00257EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/02/16 12:2 a.m.14 views

CVE-2026-2523

Open5GS Open5GS (up to 2.7.6) is affected in the SMF path, specifically the smf_gn_handle_create_pdp_context_request function in src/smf/gn-handler.c. The issue is a manipulation that leads to a reachable assertion, allowing remote exploitation. Public exploits exist and disclosure occurred with ...

7.5CVSS5.5AI score0.0052EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder