Vulnerability Details CVE-2022-29368
Moddable commit before 135aa9a4a6a9b49b60aa730ebc3bcc6247d75c45 was discovered to contain an out-of-bounds read via the function fxUint8Getter at /moddable/xs/sources/xsDataView.c.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.4%
CVSS Severity
CVSS v3 Score 7.1
CVSS v2 Score 5.8
References
- https://github.com/Moddable-OpenSource/moddable/commit/135aa9a4a6a9b49b60aa730ebc3bcc6247d75c45
- https://github.com/Moddable-OpenSource/moddable/issues/896
- https://github.com/Moddable-OpenSource/moddable/commit/135aa9a4a6a9b49b60aa730ebc3bcc6247d75c45
- https://github.com/Moddable-OpenSource/moddable/issues/896
Products affected by CVE-2022-29368
-
cpe:2.3:a:moddable:moddable:os180328
-
cpe:2.3:a:moddable:moddable:os180329
-
cpe:2.3:a:moddable:moddable:os200831
-
cpe:2.3:a:moddable:moddable:os200903
-
cpe:2.3:a:moddable:moddable:os200904
-
cpe:2.3:a:moddable:moddable:os200908
-
cpe:2.3:a:moddable:moddable:os200910
-
cpe:2.3:a:moddable:moddable:os200915
-
cpe:2.3:a:moddable:moddable:os200925
-
cpe:2.3:a:moddable:moddable:os200930
-
cpe:2.3:a:moddable:moddable:os201005b
-
cpe:2.3:a:moddable:moddable:os201006
-
cpe:2.3:a:moddable:moddable:os201012
-
cpe:2.3:a:moddable:moddable:os201014
-
cpe:2.3:a:moddable:moddable:os201020
-
cpe:2.3:a:moddable:moddable:os201030
-
cpe:2.3:a:moddable:moddable:os201116
-
cpe:2.3:a:moddable:moddable:os201127
-
cpe:2.3:a:moddable:moddable:os201216
-
cpe:2.3:a:moddable:moddable:os201230
-
cpe:2.3:a:moddable:moddable:os201230b
-
cpe:2.3:a:moddable:moddable:os202014
-
cpe:2.3:a:moddable:moddable:os210119
-
cpe:2.3:a:moddable:moddable:os210302
-
cpe:2.3:a:moddable:moddable:os210406
-
cpe:2.3:a:moddable:moddable:os210504
-
cpe:2.3:a:moddable:moddable:os210603