Jsish Denial of Service Vulnerability (CNVD-2022-07927)

Jsish is a small JavaScript parser with a built-in database written in C. A security vulnerability exists in Jsish version v3.5.0, which stems from a heap-based buffer overflow in jsiEvalCodeSub in src/jsiEval.c. An attacker could exploit this vulnerability to potentially cause a denial of servic...