2 matches found
CVE-2018-11593
Espruino before 1.99 allows attackers to cause a denial of service application crash and potential Information Disclosure with a user crafted input file via a Buffer Overflow during syntax parsing because strncpy is misused in jslex.c...
CVE-2018-11593
Espruino prior to 1.99 is affected by a buffer overflow in jslex.c caused by misusing strncpy during syntax parsing. This can lead to a denial of service (application crash) and potential information disclosure when processing a crafted input file. Exploitation details, exact versions, and remedi...