Shodan
Vulnerabilities
Vulnerable Software
Jerryscript:  Security Vulnerabilities
CVE-2024-33255
Jerryscript commit cefd391 was discovered to contain an Assertion Failure via ECMA_STRING_IS_REF_EQUALS_TO_ONE (string_p) in ecma_free_string_list.
CVSS Score
6.2
EPSS Score
0.0
Published
2024-04-26
CVE-2024-33258
Jerryscript commit ff9ff8f was discovered to contain a segmentation violation via the component vm_loop at jerry-core/vm/vm.c.
CVSS Score
7.1
EPSS Score
0.001
Published
2024-04-26
CVE-2024-33259
Jerryscript commit cefd391 was discovered to contain a segmentation violation via the component scanner_seek at jerry-core/parser/js/js-scanner-util.c.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-04-26
CVE-2024-33260
Jerryscript commit cefd391 was discovered to contain a segmentation violation via the component parser_parse_class at jerry-core/parser/js/js-parser-expr.c
CVSS Score
5.1
EPSS Score
0.001
Published
2024-04-26
CVE-2024-29489
Jerryscript 2.4.0 has SEGV at ./jerry-core/ecma/base/ecma-helpers.c:238:58 in ecma_get_object_type.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-03-28
CVE-2023-36109
Buffer Overflow vulnerability in JerryScript version 3.0, allows remote attackers to execute arbitrary code via ecma_stringbuilder_append_raw component at /jerry-core/ecma/base/ecma-helpers-string.c.
CVSS Score
9.8
EPSS Score
0.204
Published
2023-09-20
CVE-2023-38961
Buffer Overflwo vulnerability in JerryScript Project jerryscript v.3.0.0 allows a remote attacker to execute arbitrary code via the scanner_is_context_needed component in js-scanner-until.c.
CVSS Score
9.8
EPSS Score
0.069
Published
2023-08-21
CVE-2020-24187
An issue was discovered in ecma-helpers.c in jerryscript version 2.3.0, allows local attackers to cause a denial of service (DoS) (Null Pointer Dereference).
CVSS Score
5.5
EPSS Score
0.0
Published
2023-08-11
CVE-2023-36201
An issue in JerryscriptProject jerryscript v.3.0.0 allows an attacker to obtain sensitive information via a crafted script to the arrays.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-07-07
CVE-2020-22597
An issue in Jerrscript- project Jerryscrip v. 2.3.0 allows a remote attacker to execute arbitrary code via the ecma_builtin_array_prototype_object_slice parameter.
CVSS Score
9.8
EPSS Score
0.009
Published
2023-07-03


Products
Pricing
Contact Us

Shodan ® - All rights reserved