Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Quickjs ProjectQuickjs

14 matches found

CVE
CVEadded 2025/04/27 12:0 a.m.73 views

CVE-2025-46688

CVE-2025-46688 affects quickjs-ng up to 0.9.0, with an incorrect size calculation in JS_ReadBigInt for a BigInt that leads to a heap-based buffer overflow. The vulnerability also affects QuickJS prior to 2025-04-26. Connected sources consistently describe the faulty size computation as the root c...

8.4CVSS5.7AI score0.00077EPSS
CVE
CVEadded 2025/10/16 3:51 p.m.61 views

CVE-2025-62491

The CVE-2025-62491 entry concerns a Use-After-Free (UAF) in the QuickJS engine’s standard library. The vulnerability occurs in js_std_promise_rejection_check when iterating the global rejected_promise_list; during error reporting, rp->reason may be an Error with a custom property getter, and e...

8.8CVSS6.8AI score0.00028EPSS
CVE
CVEadded 2024/04/23 12:0 a.m.55 views

CVE-2023-48184

CVE-2023-48184 affects QuickJS before 7414e5f, where a use-after-free in JS_FreeValueRT arises from incorrect garbage collection of async functions with closures. Multiple connected sources (Red Hat, Debian/OSV entries, Ubuntu USN, and Nessus) document the issue and reference unpatched status in ...

3.9CVSS6.8AI score0.00026EPSS
CVE
CVEadded 2024/04/23 12:0 a.m.54 views

CVE-2023-48183

CVE-2023-48183 affects QuickJS prior to commit c4cdd61. The vulnerability stems from an erroneous lexical scope of the value of this with eval, causing a NULL pointer dereference in build_for_in_iterator. Documented impact includes possible crashes/denial of service and potential arbitrary code e...

7.5CVSS6.8AI score0.00066EPSS
CVE
CVEadded 2023/05/12 12:0 a.m.51 views

CVE-2023-31922

CVE-2023-31922 affects QuickJS, specifically the js_proxy_isArray path in quickjs.c, where a stack overflow can trigger a crash. The issue is tied to commit 2788d71. Public docs indicate a DoS/crash impact but do not provide exploitation details. Remediation mentioned in the sources includes upgr...

7.5CVSS7.5AI score0.00281EPSS
CVE
CVEadded 2021/07/13 2:43 p.m.40 views

CVE-2020-22876

CVE-2020-22876 relates to a buffer overflow in QuickJS (source: quickjs.c). The vulnerability allows remote denial of service via a crafted input and is mitigated by a fix released on 2020-07-05. Affected component is the QuickJS engine; root cause is a buffer overflow in quickjs.c leading to mem...

7.5CVSS7.3AI score0.00839EPSS
CVE
CVEadded 2025/10/16 3:51 p.m.37 views

CVE-2025-62494

Summary: CVE-2025-62494 is a type-confusion vulnerability in the QuickJS engine’s string concatenation path. During the + operation, if the left operand is a string, the code converts the right operand to a primitive via JS_ToPrimitiveFree, which can trigger callbacks (toString/valueOf). While th...

8.8CVSS7.6AI score0.00017EPSS
CVE
CVEadded 2025/10/16 3:51 p.m.36 views

CVE-2025-62495

CVE-2025-62495 describes an integer overflow in QuickJS regExp (libregexp). The DynBuf storing regex bytecode uses size_t, but several internal routines cast the DynBuf size_t to a signed int, so very large/complex patterns can exceed 2^31 bytes. The result is a negative value used for offsets (e...

8.8CVSS7.1AI score0.00028EPSS
CVE
CVEadded 2025/10/16 3:51 p.m.23 views

CVE-2025-62492

CVE-2025-62492 is a vulnerability in the QuickJS engine affecting the implementation of TypedArray.prototype.indexOf(). When a negative fromIndex is supplied, the calculation d_new = d + len can suffer floating-point precision loss, producing k = len. The search then reads starting at index len, ...

6.5CVSS6.2AI score0.00019EPSS
CVE
CVEadded 2025/10/16 3:51 p.m.13 views

CVE-2025-62490

CVE-2025-62490 affects QuickJS: in js_print_object, during printing of arrays, maps, or sets, the code reads the length and iterates, but printing a value is not side-effect free. An attacker-defined callback during js_print_value could resize or remove items (e.g., in an array or ms->records)...

8.8CVSS6.7AI score0.00028EPSS
CVE
CVEadded 2025/10/16 3:52 p.m.11 views

CVE-2025-62496

The CVE refers to QuickJS: BigInt parsing in js_bigint_from_string. When converting a decimal string with an extremely large number of digits, the code computes n_bits as (n_digits × 27 + 7) / 8. For very large inputs (e.g., tens of millions of digits), this intermediate value overflows a 32-bit ...

8.8CVSS6.8AI score0.00031EPSS
CVE
CVEadded 2026/03/06 12:0 a.m.11 views

CVE-2025-69653

CVE-2025-69653 affects QuickJS: when using the qjs interpreter with the -m option, a crafted JavaScript input can trigger an internal assertion in gc_decref_child (quickjs.c), causing an abort (SIGABRT) during garbage collection and a denial‑of‑service. The issue is fixed in commit 1dbba8a88eaa40...

6.5CVSS5.8AI score0.00058EPSS
CVE
CVEadded 2026/03/06 12:0 a.m.11 views

CVE-2025-69654

CVE-2025-69654 concerns the QuickJS qjs interpreter. A crafted JavaScript input, when run with the -m option and a low memory limit on the QuickJS release 2025-09-13, can cause an out-of-memory condition followed by an assertion failure in JS_FreeRuntime (list_empty(&rt->gc_obj_list)) during r...

7.5CVSS5.8AI score0.00075EPSS
CVE
CVEadded 2025/10/16 3:51 p.m.9 views

CVE-2025-62493

CVE-2025-62493 affects the QuickJS engine, specifically the BigInt string conversion path (js_bigint_to_string1). The root cause is an off-by-one error in the calculation of the number of digits (n_digits) needed for the string representation, which can cause memory reads beyond the allocated Big...

6.5CVSS6AI score0.0002EPSS