Jerryscript CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (96 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2024-33260	1 Jerryscript	1 Jerryscript	2024-11-21	5.1 Medium
Jerryscript commit cefd391 was discovered to contain a segmentation violation via the component parser_parse_class at jerry-core/parser/js/js-parser-expr.c
CVE-2024-33259	1 Jerryscript	1 Jerryscript	2024-11-21	5.5 Medium
Jerryscript commit cefd391 was discovered to contain a segmentation violation via the component scanner_seek at jerry-core/parser/js/js-scanner-util.c.
CVE-2024-33255	1 Jerryscript	1 Jerryscript	2024-11-21	6.2 Medium
Jerryscript commit cefd391 was discovered to contain an Assertion Failure via ECMA_STRING_IS_REF_EQUALS_TO_ONE (string_p) in ecma_free_string_list.
CVE-2023-38961	1 Jerryscript	1 Jerryscript	2024-11-21	9.8 Critical
Buffer Overflwo vulnerability in JerryScript Project jerryscript v.3.0.0 allows a remote attacker to execute arbitrary code via the scanner_is_context_needed component in js-scanner-until.c.
CVE-2023-36201	1 Jerryscript	1 Jerryscript	2024-11-21	7.5 High
An issue in JerryscriptProject jerryscript v.3.0.0 allows an attacker to obtain sensitive information via a crafted script to the arrays.
CVE-2023-36109	1 Jerryscript	1 Jerryscript	2024-11-21	9.8 Critical
Buffer Overflow vulnerability in JerryScript version 3.0, allows remote attackers to execute arbitrary code via ecma_stringbuilder_append_raw component at /jerry-core/ecma/base/ecma-helpers-string.c.
CVE-2022-32117	1 Jerryscript	1 Jerryscript	2024-11-21	7.8 High
Jerryscript v2.4.0 was discovered to contain a stack buffer overflow via the function jerryx_print_unhandled_exception in /util/print.c.
CVE-2022-22901	1 Jerryscript	1 Jerryscript	2024-11-21	5.5 Medium
There is an Assertion in 'context_p->next_scanner_info_p->type == SCANNER_TYPE_FUNCTION' failed at parser_parse_function_arguments in /js/js-parser.c of JerryScript commit a6ab5e9.
CVE-2022-22895	1 Jerryscript	1 Jerryscript	2024-11-21	7.8 High
Jerryscript 3.0.0 was discovered to contain a heap-buffer-overflow via ecma_utf8_string_to_number_by_radix in /jerry-core/ecma/base/ecma-helpers-conversion.c.
CVE-2022-22894	1 Jerryscript	1 Jerryscript	2024-11-21	7.8 High
Jerryscript 3.0.0 was discovered to contain a stack overflow via ecma_lcache_lookup in /jerry-core/ecma/base/ecma-lcache.c.
CVE-2022-22893	1 Jerryscript	1 Jerryscript	2024-11-21	7.8 High
Jerryscript 3.0.0 was discovered to contain a stack overflow via vm_loop.lto_priv.304 in /jerry-core/vm/vm.c.
CVE-2022-22892	1 Jerryscript	1 Jerryscript	2024-11-21	5.5 Medium
There is an Assertion 'ecma_is_value_undefined (value) \|\| ecma_is_value_null (value) \|\| ecma_is_value_boolean (value) \|\| ecma_is_value_number (value) \|\| ecma_is_value_string (value) \|\| ecma_is_value_bigint (value) \|\| ecma_is_value_symbol (value) \|\| ecma_is_value_object (value)' failed at jerry-core/ecma/base/ecma-helpers-value.c in Jerryscripts 3.0.0.
CVE-2022-22891	1 Jerryscript	1 Jerryscript	2024-11-21	5.5 Medium
Jerryscript 3.0.0 was discovered to contain a SEGV vulnerability via ecma_ref_object_inline in /jerry-core/ecma/base/ecma-gc.c.
CVE-2022-22890	1 Jerryscript	1 Jerryscript	2024-11-21	5.5 Medium
There is an Assertion 'arguments_type != SCANNER_ARGUMENTS_PRESENT && arguments_type != SCANNER_ARGUMENTS_PRESENT_NO_REG' failed at /jerry-core/parser/js/js-scanner-util.c in Jerryscript 3.0.0.
CVE-2022-22888	1 Jerryscript	1 Jerryscript	2024-11-21	7.8 High
Jerryscript 3.0.0 was discovered to contain a stack overflow via ecma_op_object_find_own in /ecma/operations/ecma-objects.c.
CVE-2021-46351	1 Jerryscript	1 Jerryscript	2024-11-21	5.5 Medium
There is an Assertion 'local_tza == ecma_date_local_time_zone_adjustment (date_value)' failed at /jerry-core/ecma/builtin-objects/ecma-builtin-date-prototype.c(ecma_builtin_date_prototype_dispatch_set):421 in JerryScript 3.0.0.
CVE-2021-46350	1 Jerryscript	1 Jerryscript	2024-11-21	5.5 Medium
There is an Assertion 'ecma_is_value_object (value)' failed at jerryscript/jerry-core/ecma/base/ecma-helpers-value.c in JerryScript 3.0.0.
CVE-2021-46349	1 Jerryscript	1 Jerryscript	2024-11-21	5.5 Medium
There is an Assertion 'type == ECMA_OBJECT_TYPE_GENERAL \|\| type == ECMA_OBJECT_TYPE_PROXY' failed at /jerry-core/ecma/operations/ecma-objects.c in JerryScript 3.0.0.
CVE-2021-46348	1 Jerryscript	1 Jerryscript	2024-11-21	5.5 Medium
There is an Assertion 'ECMA_STRING_IS_REF_EQUALS_TO_ONE (string_p)' failed at /jerry-core/ecma/base/ecma-literal-storage.c in JerryScript 3.0.0.
CVE-2021-46347	1 Jerryscript	1 Jerryscript	2024-11-21	5.5 Medium
There is an Assertion 'ecma_object_check_class_name_is_object (obj_p)' failed at /jerry-core/ecma/operations/ecma-objects.c in JerryScript 3.0.0.

« first previous Page 2 of 5. next last »