hermes-engine is vulnerable to Arbitrary Code Execution. A remote attacker is able to inject and execute malicious code on the server when the library permits the execution of untrusted JavaScript via an out-of-bound write.
CPE | Name | Operator | Version |
---|---|---|---|
hermes-engine | le | 0.11.0 | |
hermes-engine | le | 0.11.0 | |
hermes-engine | le | 0.11.0 | |
hermes-engine | le | 0.11.0 |