5 matches found
CVE-2025-47154
LibJS in Ladybird before f5a6704 mishandles the freeing of the vector that argumentslist references, leading to a use-after-free, and allowing remote attackers to execute arbitrary code via a crafted .js file. NOTE: the GitHub README says "Ladybird is in a pre-alpha state, and only suitable for u...
CVE-2025-47154
creationtimestamp| type| source ---|---|--- 2025-05-01 08:14:25+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14249 2025-05-01 09:55:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lo426c3xbq2n 2025-05-01 11:00:20+00:00| published-proof-of-concept|...
CVE-2025-47154
LibJS in Ladybird before f5a6704 mishandles the freeing of the vector that argumentslist references, leading to a use-after-free, and allowing remote attackers to execute arbitrary code via a crafted .js file. NOTE: the GitHub README says "Ladybird is in a pre-alpha state, and only suitable for u...
CVE-2025-47154
CVE-2025-47154 affects the LibJS component of the Ladybird browser, specifically versions prior to f5a6704. The root cause is improper freeing of the vector referenced by arguments_list, causing a use-after-free. This can allow remote attackers to execute arbitrary code by feeding a crafted .js f...
CVE-2025-47154
LibJS in Ladybird before f5a6704 mishandles the freeing of the vector that argumentslist references, leading to a use-after-free, and allowing remote attackers to execute arbitrary code via a crafted .js file. NOTE: the GitHub README says "Ladybird is in a pre-alpha state, and only suitable for u...