Espruino: >> Espruino Security Vulnerabilities
Espruino 2v20 (commit fcc9ba4) was discovered to contain a Stack Overflow via the jspeFactorFunctionCall at src/jsparse.c.
CVSS Score
7.5
EPSS Score
0.006
Published
2024-02-07
Espruino 2v20 (commit fcc9ba4) was discovered to contain an Out-of-bounds Read via jsvStringIteratorPrintfCallback at src/jsvar.c.
CVSS Score
7.5
EPSS Score
0.005
Published
2024-02-07
Buffer Overflow vulnerability found in Espruino 2v05.41 allows an attacker to cause a denial of service via the function jsvGarbageCollectMarkUsed in file src/jsvar.c.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-04-04
An issue found in Espruino Espruino 6ea4c0a allows an attacker to execute arbitrrary code via oldFunc parameter of the jswrap_object.c:jswrap_function_replacewith endpoint.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-04-04
Espruino 2v11.251 was discovered to contain a stack buffer overflow via src/jsvar.c in jsvNewFromString.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-03-05
Espruino 2v11 release was discovered to contain a stack buffer overflow via src/jsvar.c in jsvGetNextSibling.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-03-05
Espruino 2v11.251 was discovered to contain a SEGV vulnerability via src/jsinteractive.c in jsiGetDeviceFromClass.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-01-20
Espruino 2v11.251 was discovered to contain a stack buffer overflow via src/jsvar.c in jsvNewFromString.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-01-20
Espruino 2v10.246 was discovered to contain a stack buffer overflow via src/jsutils.c in vcbprintf.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-01-20
Buffer overflow vulnerability in function jsvGetStringChars in Espruino before RELEASE_2V09, allows remote attackers to execute arbitrary code.
CVSS Score
9.8
EPSS Score
0.026
Published
2021-07-13
Page 1