24 matches found
EUVD-2018-3617
Malware in sbrugna...
EUVD-2018-3621
Malware in sbrugna...
EUVD-2018-3615
Malware in sbrugna...
EUVD-2018-3618
Malware in sbrugna...
EUVD-2018-3623
Malware in sbrugna...
EUVD-2018-3622
Malware in sbrugna...
EUVD-2020-11595
Malware in sbrugna...
EUVD-2021-33013
Malicious code in bioql PyPI...
CVE-2024-25200
Espruino 2v20 commit fcc9ba4 was discovered to contain a Stack Overflow via the jspeFactorFunctionCall at src/jsparse.c...
CVE-2024-25201
Espruino 2v20 commit fcc9ba4 was discovered to contain an Out-of-bounds Read via jsvStringIteratorPrintfCallback at src/jsvar.c...
CVE-2020-23257
Buffer Overflow vulnerability found in Espruino 2v05.41 allows an attacker to cause a denial of service via the function jsvGarbageCollectMarkUsed in file src/jsvar.c...
CVE-2020-19693
An issue found in Espruino Espruino 6ea4c0a allows an attacker to execute arbitrrary code via oldFunc parameter of the jswrapobject.c:jswrapfunctionreplacewith endpoint...
CVE-2020-22884
Buffer overflow vulnerability in function jsvGetStringChars in Espruino before RELEASE2V09, allows remote attackers to execute arbitrary code...
CVE-2018-11590
Espruino before 1.99 allows attackers to cause a denial of service application crash with a user crafted input file via an integer overflow during syntax parsing. This was addressed by fixing stack size detection on Linux in jsutils.c...
CVE-2018-11591
Espruino before 1.98 allows attackers to cause a denial of service application crash with a user crafted input file via a NULL pointer dereference during syntax parsing. This was addressed by adding validation for a debug trace print statement in jsvar.c...
CVE-2018-11595
Espruino before 1.99 allows attackers to cause a denial of service application crash and a potential Escalation of Privileges with a user crafted input file via a Buffer Overflow during syntax parsing, because strncat is misused...
CVE-2018-20201
There is a stack-based buffer over-read in the jsfNameFromString function of jsflash.c in Espruino 2V00, leading to a denial of service or possibly unspecified other impact via a crafted js file...
CVE-2018-11592
Espruino before 1.98 allows attackers to cause a denial of service application crash with a user crafted input file via an Out-of-bounds Read during syntax parsing in which certain height validation is missing in libs/graphics/jswrapgraphics.c...
Out-of-bounds
Espruino 2v20 commit fcc9ba4 was discovered to contain an Out-of-bounds Read via jsvStringIteratorPrintfCallback at src/jsvar.c...
CVE-2020-19693
An issue found in Espruino Espruino 6ea4c0a allows an attacker to execute arbitrrary code via oldFunc parameter of the jswrapobject.c:jswrapfunctionreplacewith endpoint...