4 matches found
Jsish memory misreference vulnerability (CNVD-2019-27081)
Jsish is a scripting language for embedded systems. A memory misreference vulnerability exists in the JsiRegExpNew function in Jsish 2.4.70 2.047. An attacker could exploit this vulnerability to cause a denial of service or possibly execute arbitrary code...
CVE-2019-1010177
Jsish 2.4.70 2.047 is affected by: Use After Free. The impact is: denial of service and possibly arbitrary code execution. The component is: function JsiRegExpNew jsi/jsiRegexp.c:39. The attack vector is: executing crafted javascript code. The fixed version is: after commit 48a66c798d...
Code injection
Jsish 2.4.70 2.047 is affected by: Use After Free. The impact is: denial of service and possibly arbitrary code execution. The component is: function JsiRegExpNew jsi/jsiRegexp.c:39. The attack vector is: executing crafted javascript code. The fixed version is: after commit 48a66c798d...
CVE-2019-1010177
Jsish 2.4.70 2.047 is affected by: Use After Free. The impact is: denial of service and possibly arbitrary code execution. The component is: function JsiRegExpNew jsi/jsiRegexp.c:39. The attack vector is: executing crafted javascript code. The fixed version is: after commit 48a66c798d...