Shodan
Vulnerabilities
Vulnerable Software
Artifex:  >> Mujs  >> 1.0.1  Security Vulnerabilities
CVE-2021-33796
In MuJS before version 1.1.2, a use-after-free flaw in the regexp source property access may cause denial of service.
CVSS Score
10.0
EPSS Score
0.001
Published
2023-07-07
CVE-2021-33797
Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1. An integer overflow happens when js_strtod() reads in floating point exponent, which leads to a buffer overflow in the pointer *d.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-04-17
CVE-2022-44789
A logical issue in O_getOwnPropertyDescriptor() in Artifex MuJS 1.0.0 through 1.3.x before 1.3.2 allows an attacker to achieve Remote Code Execution through memory corruption, via the loading of a crafted JavaScript file.
CVSS Score
8.8
EPSS Score
0.032
Published
2022-11-23
CVE-2022-30974
compile in regexp.c in Artifex MuJS through 1.2.0 results in stack consumption because of unlimited recursion, a different issue than CVE-2019-11413.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-05-18
CVE-2022-30975
In Artifex MuJS through 1.2.0, jsP_dumpsyntax in jsdump.c has a NULL pointer dereference, as demonstrated by mujs-pp.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-05-18
CVE-2020-22885
Buffer overflow vulnerability in mujs before 1.0.8 due to recursion in the GC scanning phase, allows remote attackers to cause a denial of service.
CVSS Score
7.5
EPSS Score
0.005
Published
2021-07-13
CVE-2020-22886
Buffer overflow vulnerability in function jsG_markobject in jsgc.c in mujs before 1.0.8, allows remote attackers to cause a denial of service.
CVSS Score
7.5
EPSS Score
0.006
Published
2021-07-13
CVE-2020-24343
Artifex MuJS through 1.0.7 has a use-after-free in jsrun.c because of unconditional marking in jsgc.c.
CVSS Score
7.8
EPSS Score
0.002
Published
2020-08-13
CVE-2018-5759
jsparse.c in Artifex MuJS through 1.0.2 does not properly maintain the AST depth for binary expressions, which allows remote attackers to cause a denial of service (excessive recursion) via a crafted file.
CVSS Score
5.5
EPSS Score
0.038
Published
2018-01-24
CVE-2018-6191
The js_strtod function in jsdtoa.c in Artifex MuJS through 1.0.2 has an integer overflow because of incorrect exponent validation.
CVSS Score
5.5
EPSS Score
0.032
Published
2018-01-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved