CVE-2023-31920

Jerryscript 3.0 commit 05dbbd1 was discovered to contain an Assertion Failure via the vmloop at jerry-core/vm/vm.c...

CVE-2020-24187

An issue was discovered in ecma-helpers.c in jerryscript version 2.3.0, allows local attackers to cause a denial of service DoS Null Pointer Dereference...

EUVD-2020-5891

Malware in sbrugna...

EUVD-2021-31792

Malicious code in bioql PyPI...

EUVD-2022-28028

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-34868

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jerryscript 3.0 commit 05dbbd1 was discovered to contain an Assertion Failure via the parserparseforstatementstart at jerry-core/parser/js/js-parser-statm.c...

CVE-2023-36109

Buffer Overflow vulnerability in JerryScript version 3.0, allows remote attackers to execute arbitrary code via ecmastringbuilderappendraw component at /jerry-core/ecma/base/ecma-helpers-string.c...

JerryScript 安全漏洞

JerryScript is a lightweight JavaScript engine from the Jerryscript Project. A security vulnerability exists in JerryscriptProject jerryscript version v.3.0.0. An attacker exploited the vulnerability to obtain sensitive information via a specially crafted array script...

CVE-2023-31914

Jerryscript 3.0 commit 05dbbd1 was discovered to contain out-of-memory issue in malloc...

CVE-2023-31919

Jerryscript 3.0 commit 05dbbd1 was discovered to contain an Assertion Failure via the jcontextraiseexception at jerry-core/jcontext/jcontext.c...

CVE-2023-31914

Jerryscript 3.0 commit 05dbbd1 was discovered to contain out-of-memory issue in malloc...

CVE-2023-31921

Jerryscript 3.0 commit 05dbbd1 was discovered to contain an Assertion Failure via the ecmabiguintdivmod at jerry-core/ecma/operations/ecma-big-uint.c...

PT-2023-23516 · Unknown · Jerryscript

Name of the Vulnerable Software and Affected Versions: Jerryscript version 3.0 commit 05dbbd1 Description: The issue is related to an out-of-memory problem in the malloc function. Recommendations: For Jerryscript version 3.0 commit 05dbbd1, consider restricting memory allocation to prevent...

PT-2023-23511 · Unknown · Jerryscript

Name of the Vulnerable Software and Affected Versions: Jerryscript version 3.0.0 Description: A heap-buffer-overflow issue was discovered in Jerryscript via the component scanner literal is created at /jerry-core/parser/js/js-scanner-util.c. Recommendations: For Jerryscript version 3.0.0, conside...

CVE-2021-44994

There is an Assertion ''JERRYCONTEXT jmemheapallocatedsize == 0'' failed at /jerry-core/jmem/jmem-heap.c in Jerryscript 3.0.0...

CVE-2021-44992

There is an Assertion ''ecmaobjectistypedarray objp'' failed at /jerry-core/ecma/operations/ecma-typedarray-object.c in Jerryscript 3.0.0...

CVE-2022-22892

There is an Assertion 'ecmaisvalueundefined value || ecmaisvaluenull value || ecmaisvalueboolean value || ecmaisvaluenumber value || ecmaisvaluestring value || ecmaisvaluebigint value || ecmaisvaluesymbol value || ecmaisvalueobject value' failed at jerry-core/ecma/base/ecma-helpers-value.c in...

CVE-2022-22895

Jerryscript 3.0.0 was discovered to contain a heap-buffer-overflow via ecmautf8stringtonumberbyradix in /jerry-core/ecma/base/ecma-helpers-conversion.c...

CVE-2021-46346

There is an Assertion 'localtza == ecmadatelocaltimezoneadjustment datevalue' failed at /jerry-core/ecma/builtin-objects/ecma-builtin-date-prototype.cecmabuiltindateprototypedispatchset:421 in JerryScript 3.0.0...

CVE-2020-24345

JerryScript through 2.3.0 allows stack consumption via function anew new Proxya,JSON.parse"",a. NOTE: the vendor states that the problem is the lack of the --stack-limit option...