Lucene search

Ubuntu.comUB:CVE-2023-30406

HistoryApr 24, 2023 - 12:00 a.m.

CVE-2023-30406

2023-04-2400:00:00

ubuntu.com

jerryscript vulnerability segmentationviolation ecmahelpers unix

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

Percentile

12.7%

JSON

Jerryscript commit 1a2c047 was discovered to contain a segmentation
violation via the component ecma_find_named_property at
/base/ecma-helpers.c.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchiotjs< anyUNKNOWN
ubuntu22.04noarchiotjs< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	iotjs	< any	UNKNOWN
ubuntu	22.04	noarch	iotjs	< any	UNKNOWN

References

github.com/jerryscript-project/jerryscript/issues/5058

launchpad.net/bugs/cve/CVE-2023-30406

nvd.nist.gov/vuln/detail/CVE-2023-30406

security-tracker.debian.org/tracker/CVE-2023-30406

www.cve.org/CVERecord?id=CVE-2023-30406

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

Percentile

12.7%

JSON

Related for UB:CVE-2023-30406