CVE-2020-22875

Jsish CVE-2020-22875 is a vulnerability in the Jsi_ObjSetLength function where an integer overflow in that function allows remote code execution. Affected is jsish versions before 3.0.6 (NVD) and variants cited as vulnerable before 3.0.8 (CNVD). The root cause is improper boundary checks in Jsi_O...

Jsish 输入验证错误漏洞

Jsish is a small JavaScript parser written in C with a built-in database.Jsish has a buffer overflow vulnerability in versions prior to 3.0.8, which stems from the failure of the product's JsiObjSetLength function to restrict integer data boundaries, allowing an attacker to execute arbitrary code...