CVEDB API

LuaJit through 2.1.0-beta3 has an out-of-bounds read because __gc handler frame traversal is mishandled.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 72.2%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2020-15890

Luajit » Luajit » Version: N/A

cpe:2.3:a:luajit:luajit:-
Luajit » Luajit » Version: 2.0.0

cpe:2.3:a:luajit:luajit:2.0.0
Luajit » Luajit » Version: 2.0.1

cpe:2.3:a:luajit:luajit:2.0.1
Luajit » Luajit » Version: 2.0.2

cpe:2.3:a:luajit:luajit:2.0.2
Luajit » Luajit » Version: 2.0.3

cpe:2.3:a:luajit:luajit:2.0.3
Luajit » Luajit » Version: 2.0.4

cpe:2.3:a:luajit:luajit:2.0.4
Luajit » Luajit » Version: 2.0.5

cpe:2.3:a:luajit:luajit:2.0.5
Luajit » Luajit » Version: 2.1.0

cpe:2.3:a:luajit:luajit:2.1.0
Canonical » Ubuntu Linux » Version: 16.04

cpe:2.3:o:canonical:ubuntu_linux:16.04
Debian » Debian Linux » Version: 9.0

cpe:2.3:o:debian:debian_linux:9.0