Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2024-27934

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Starting in version 1.36.2 and prior to version 1.40.3, use of inherently unsafe `*const c_void` and `ExternalPointer` leads to use-after-free access of the underlying structure, resulting in arbitrary code execution. Use of inherently unsafe `*const c_void` and `ExternalPointer` leads to use-after-free access of the underlying structure, which is exploitable by an attacker controlling the code executed inside a Deno runtime to obtain arbitrary code execution on the host machine regardless of permissions. This bug is known to be exploitable for both `*const c_void` and `ExternalPointer` implementations. Version 1.40.3 fixes this issue.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.9%
CVSS Severity
CVSS v3 Score 8.4
Products affected by CVE-2024-27934
  • Deno » Deno » Version: 1.36.2
    cpe:2.3:a:deno:deno:1.36.2
  • Deno » Deno » Version: 1.36.3
    cpe:2.3:a:deno:deno:1.36.3
  • Deno » Deno » Version: 1.36.4
    cpe:2.3:a:deno:deno:1.36.4
  • Deno » Deno » Version: 1.37.0
    cpe:2.3:a:deno:deno:1.37.0
  • Deno » Deno » Version: 1.37.1
    cpe:2.3:a:deno:deno:1.37.1
  • Deno » Deno » Version: 1.37.2
    cpe:2.3:a:deno:deno:1.37.2
  • Deno » Deno » Version: 1.38.0
    cpe:2.3:a:deno:deno:1.38.0
  • Deno » Deno » Version: 1.38.1
    cpe:2.3:a:deno:deno:1.38.1
  • Deno » Deno » Version: 1.38.2
    cpe:2.3:a:deno:deno:1.38.2
  • Deno » Deno » Version: 1.38.3
    cpe:2.3:a:deno:deno:1.38.3
  • Deno » Deno » Version: 1.38.4
    cpe:2.3:a:deno:deno:1.38.4
  • Deno » Deno » Version: 1.38.5
    cpe:2.3:a:deno:deno:1.38.5
  • Deno » Deno » Version: 1.39.0
    cpe:2.3:a:deno:deno:1.39.0
  • Deno » Deno » Version: 1.39.1
    cpe:2.3:a:deno:deno:1.39.1
  • Deno » Deno » Version: 1.39.2
    cpe:2.3:a:deno:deno:1.39.2
  • Deno » Deno » Version: 1.39.3
    cpe:2.3:a:deno:deno:1.39.3
  • Deno » Deno » Version: 1.39.4
    cpe:2.3:a:deno:deno:1.39.4
  • Deno » Deno » Version: 1.40.0
    cpe:2.3:a:deno:deno:1.40.0
  • Deno » Deno » Version: 1.40.1
    cpe:2.3:a:deno:deno:1.40.1
  • Deno » Deno » Version: 1.40.2
    cpe:2.3:a:deno:deno:1.40.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved