5 matches found
EUVD-2020-16070
Malware in sbrugna...
The vulnerability of the `parser_parse_object_initializer` function in the `js-parser-expr.c` component of the JavaScript framework for Internet of Things, JerryScript, and the IoT.js platform, arises due to the insufficient use of the `assert()` function. This allows attackers to trigger a service failure.
The vulnerability of the parserparseobjectinitializer function in the js-parser-expr.c component of the JavaScript engine for Thingscript and the IoT.js platform is related to incorrect comparisons. Exploiting this vulnerability could allow a remote attacker to cause a service failure...
CVE-2020-23311
There is an Assertion 'contextp-token.type == LEXERRIGHTBRACE || contextp-token.type == LEXERASSIGN || contextp-token.type == LEXERCOMMA' failed at js-parser-expr.c:3230 in parserparseobjectinitializer in JerryScript 2.2.0...
Authentication flaw
There is an Assertion 'contextp-token.type == LEXERRIGHTBRACE || contextp-token.type == LEXERASSIGN || contextp-token.type == LEXERCOMMA' failed at js-parser-expr.c:3230 in parserparseobjectinitializer in JerryScript 2.2.0...
CVE-2020-23311
CVE-2020-23311 affects JerryScript 2.2.0. The vulnerability arises from an assertion failure in the parser_parse_object_initializer (js-parser-expr.c:3230) when processing object initializers. Public documents provide the exact assertion and file/line but do not specify an exploit, affected produ...