Shodan
Vulnerabilities
Vulnerable Software
Jerryscript:  >> Jerryscript  >> 2.2.0  Security Vulnerabilities
CVE-2021-42863
A buffer overflow in ecma_builtin_typedarray_prototype_filter() in JerryScript version fe3a5c0 allows an attacker to construct a fake object or a fake arraybuffer with unlimited size.
CVSS Score
9.8
EPSS Score
0.005
Published
2022-05-12
CVE-2021-43453
A Heap-based Buffer Overflow vulnerability exists in JerryScript 2.4.0 and prior versions via an out-of-bounds read in parser_parse_for_statement_start in the js-parser-statm.c file. This issue is similar to CVE-2020-29657.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-04-07
CVE-2021-41751
Buffer overflow vulnerability in file ecma-builtin-array-prototype.c:909 in function ecma_builtin_array_prototype_object_slice in Jerryscript before commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 on Oct 20, 2021.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-04-05
CVE-2021-41752
Stack overflow vulnerability in Jerryscript before commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 on Oct 20, 2021 due to an unbounded recursive call to the new opt() function.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-04-05
CVE-2020-23313
There is an Assertion 'scope_stack_p > context_p->scope_stack_p' failed at js-scanner-util.c:2510 in scanner_literal_is_created in JerryScript 2.2.0
CVSS Score
7.5
EPSS Score
0.003
Published
2021-06-10
CVE-2020-23314
There is an Assertion 'block_found' failed at js-parser-statm.c:2003 parser_parse_try_statement_end in JerryScript 2.2.0.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-06-10
CVE-2020-23319
There is an Assertion in '(flags >> CBC_STACK_ADJUST_SHIFT) >= CBC_STACK_ADJUST_BASE || (CBC_STACK_ADJUST_BASE - (flags >> CBC_STACK_ADJUST_SHIFT)) <= context_p->stack_depth' in parser_emit_cbc_backward_branch in JerryScript 2.2.0.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-06-10
CVE-2020-23320
There is an Assertion in 'context_p->next_scanner_info_p->type == SCANNER_TYPE_FUNCTION' in parser_parse_function_arguments in JerryScript 2.2.0.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-06-10
CVE-2020-23321
There is a heap-buffer-overflow at lit-strings.c:431 in lit_read_code_unit_from_utf8 in JerryScript 2.2.0.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-06-10
CVE-2020-23322
There is an Assertion in 'context_p->token.type == LEXER_RIGHT_BRACE || context_p->token.type == LEXER_ASSIGN || context_p->token.type == LEXER_COMMA' in parser_parse_object_initializer in JerryScript 2.2.0.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-06-10


Products
Pricing
Contact Us

Shodan ® - All rights reserved