77 matches found
Unspecified Vulnerability in JerryScript (CNVD-2021-42989)
JerryScript is a lightweight JavaScript engine . A security vulnerability exists in the parserparseobjectinitializer in /home/JerryScript/jerry-core/parser/js/js-parser-expr.c in JerryScript version 2.2.0. No details of the vulnerability are provided at this time...
CVE-2020-23322
There is an Assertion in 'contextp-token.type == LEXERRIGHTBRACE || contextp-token.type == LEXERASSIGN || contextp-token.type == LEXERCOMMA' in parserparseobjectinitializer in JerryScript 2.2.0...
CVE-2020-23322
There is an Assertion in 'contextp-token.type == LEXERRIGHTBRACE || contextp-token.type == LEXERASSIGN || contextp-token.type == LEXERCOMMA' in parserparseobjectinitializer in JerryScript 2.2.0...
CVE-2020-23311
There is an Assertion 'contextp-token.type == LEXERRIGHTBRACE || contextp-token.type == LEXERASSIGN || contextp-token.type == LEXERCOMMA' failed at js-parser-expr.c:3230 in parserparseobjectinitializer in JerryScript 2.2.0...
UBUNTU-CVE-2020-23311
There is an Assertion 'contextp-token.type == LEXERRIGHTBRACE || contextp-token.type == LEXERASSIGN || contextp-token.type == LEXERCOMMA' failed at js-parser-expr.c:3230 in parserparseobjectinitializer in JerryScript 2.2.0...
UBUNTU-CVE-2020-23322
There is an Assertion in 'contextp-token.type == LEXERRIGHTBRACE || contextp-token.type == LEXERASSIGN || contextp-token.type == LEXERCOMMA' in parserparseobjectinitializer in JerryScript 2.2.0...
CVE-2020-23322
CVE-2020-23322 concerns a vulnerability in JerryScript 2.2.0, specifically an assertion in parser_parse_object_initializer: context_p->token.type == LEXER_RIGHT_BRACE || context_p->token.type == LEXER_ASSIGN || context_p->token.type == LEXER_COMMA. The connected documents confirm the sam...
JerryScript 代码问题漏洞
JerryScript is a lightweight JavaScript engine . A security vulnerability exists in the parserparseobjectinitializer in js-parser-expr.c:3230 in JerryScript version 2.2.0. No details of the vulnerability are provided at this time...
JerryScript 安全漏洞
JerryScript is a lightweight JavaScript engine . A security vulnerability exists in the parserparseobjectinitializer in /home/JerryScript/jerry-core/parser/js/js-parser-expr.c in JerryScript version 2.2.0. No details of the vulnerability are provided at this time...
Possible Denial of Service vulnerability in Action Dispatch
There is a possible Denial of Service vulnerability in the Mime type parser of Action Dispatch. This vulnerability has been assigned the CVE identifier CVE-2021-22902. Versions Affected: = 6.0.0 Not affected: \sMIMEPARAMETER\s\z/ end end...
Remote Code Execution (RCE)
JBoss is vulnerable to remote code execution RCE. The vulnerablitiy exists because it allows the embedding of class files, allowing remote attackers to execute arbitrary code via a crafted static initializer...
GHSA-PR3H-JJHJ-573X Sprockets path traversal leads to information leak
Specially crafted requests can be used to access files that exist on the filesystem that is outside an application's root directory, when the Sprockets server is used in production. All users running an affected release should either upgrade or use one of the work arounds immediately. Workaround:...
CVE-2010-3708
The serialization implementation in JBoss Drools in Red Hat JBoss Enterprise Application Platform aka JBoss EAP or JBEAP 4.3 before 4.3.0.CP09 and JBoss Enterprise SOA Platform 4.2 and 4.3 supports the embedding of class files, which allows remote attackers to execute arbitrary code via a crafted...
CVE-2010-3708
The serialization implementation in JBoss Drools in Red Hat JBoss Enterprise Application Platform aka JBoss EAP or JBEAP 4.3 before 4.3.0.CP09 and JBoss Enterprise SOA Platform 4.2 and 4.3 supports the embedding of class files, which allows remote attackers to execute arbitrary code via a crafted...
JBoss drools deserialization remote code execution
The serialization implementation in JBoss Drools in Red Hat JBoss Enterprise Application Platform aka JBoss EAP or JBEAP 4.3 before 4.3.0.CP09 and JBoss Enterprise SOA Platform 4.2 and 4.3 supports the embedding of class files, which allows remote attackers to execute arbitrary code via a crafted...
JBoss drools deserialization remote code execution
The serialization implementation in JBoss Drools in Red Hat JBoss Enterprise Application Platform aka JBoss EAP or JBEAP 4.3 before 4.3.0.CP09 and JBoss Enterprise SOA Platform 4.2 and 4.3 supports the embedding of class files, which allows remote attackers to execute arbitrary code via a crafted...
JBoss drools deserialization remote code execution
The serialization implementation in JBoss Drools in Red Hat JBoss Enterprise Application Platform aka JBoss EAP or JBEAP 4.3 before 4.3.0.CP09 and JBoss Enterprise SOA Platform 4.2 and 4.3 supports the embedding of class files, which allows remote attackers to execute arbitrary code via a crafted...