Vulnerabilities > CVE-2024-25200 - Out-of-bounds Write vulnerability in Espruino 2.20

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
espruino
CWE-787
NVD
Published: 2024-02-07
Updated: 2024-02-15

Summary

Espruino 2v20 (commit fcc9ba4) was discovered to contain a Stack Overflow via the jspeFactorFunctionCall at src/jsparse.c.

Vulnerable Configurations

Part Description Count
OS
Espruino
1

Common Weakness Enumeration (CWE)

References