Security Vulnerabilities - CVEs Published In January 2022
Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via the component __libc_start_main.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-01-20
Moddable SDK v11.5.0 was discovered to contain a SEGV vulnerability via the component _fini.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-01-20
Moddable SDK v11.5.0 was discovered to contain a SEGV vulnerability via xs/sources/xsDataView.c in fx_ArrayBuffer_prototype_concat.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-01-20
Moddable SDK v11.5.0 was discovered to contain a SEGV vulnerability via xs/sources/xsProxy.c in fxProxyGetPrototype.
CVSS Score
5.5
EPSS Score
0.003
Published
2022-01-20
Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via xs/sources/xsDataView.c in fxUint8Getter.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-01-20
Moddable SDK v11.5.0 was discovered to contain an invalid memory access vulnerability via the component __asan_memmove.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-01-20
Moddable SDK v11.5.0 was discovered to contain a stack buffer overflow via the component __interceptor_strcat.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-01-20
Moddable SDK v11.5.0 was discovered to contain a NULL pointer dereference in the component fx_Function_prototype_hasInstance.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-01-20
There is an Assertion 'opts & PARSER_CLASS_LITERAL_CTOR_PRESENT' failed at /parser/js/js-parser-expr.c(parser_parse_class_body) in JerryScript 3.0.0.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-01-20
There is an Assertion 'page_p != NULL' failed at /parser/js/js-parser-mem.c(parser_list_get) in JerryScript 3.0.0.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-01-20