2 matches found
CVE-2021-24044
By passing invalid javascript code where await and yield were called upon non-async and non-generator getter/setter functions, Hermes would invoke generator functions and error out on invalid await/yield positions. This could result in segmentation fault as a consequence of type confusion error,...
CVE-2021-24044
Facebook Hermes vulnerability CVE-2021-24044 stems from passing invalid JavaScript where await/yield are used on non-async/non-generator getter/setter functions, triggering a type confusion error that can cause a segmentation fault with a low likelihood of RCE. Affected are Hermes versions prior ...