Vulnerabilities > Cesanta > MJS > 2.20.0

DATE CVE VULNERABILITY TITLE RISK
2024-01-02 CVE-2023-49549 Unspecified vulnerability in Cesanta MJS 2.20.0
An issue in Cesanta mjs 2.20.0 allows a remote attacker to cause a denial of service via the mjs_getretvalpos function in the msj.c file.
network
low complexity
cesanta
7.5
7.5
2024-01-02 CVE-2023-49550 Unspecified vulnerability in Cesanta MJS 2.20.0
An issue in Cesanta mjs 2.20.0 allows a remote attacker to cause a denial of service via the mjs+0x4ec508 component.
network
low complexity
cesanta
7.5
7.5
2024-01-02 CVE-2023-49551 Unspecified vulnerability in Cesanta MJS 2.20.0
An issue in Cesanta mjs 2.20.0 allows a remote attacker to cause a denial of service via the mjs_op_json_parse function in the msj.c file.
network
low complexity
cesanta
7.5
7.5
2024-01-02 CVE-2023-49552 Out-of-bounds Read vulnerability in Cesanta MJS 2.20.0
An Out of Bounds Write in Cesanta mjs 2.20.0 allows a remote attacker to cause a denial of service via the mjs_op_json_stringify function in the msj.c file.
network
low complexity
cesanta CWE-125
7.5
7.5
2024-01-02 CVE-2023-49553 Unspecified vulnerability in Cesanta MJS 2.20.0
An issue in Cesanta mjs 2.20.0 allows a remote attacker to cause a denial of service via the mjs_destroy function in the msj.c file.
network
low complexity
cesanta
7.5
7.5
2023-09-23 CVE-2023-43338 Out-of-bounds Write vulnerability in Cesanta MJS 2.20.0
Cesanta mjs v2.20.0 was discovered to contain a function pointer hijacking vulnerability via the function mjs_get_ptr().
network
low complexity
cesanta CWE-787
critical
 9.8
9.8
2023-04-24 CVE-2023-29570 Unspecified vulnerability in Cesanta MJS 2.20.0
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_ffi_cb_free at src/mjs_ffi.c.
local
low complexity
cesanta
5.5
5.5
2022-01-27 CVE-2021-46508 Reachable Assertion vulnerability in Cesanta MJS 2.20.0
There is an Assertion `i < parts_cnt' failed at src/mjs_bcode.c in Cesanta MJS v2.20.0.
network
cesanta CWE-617
4.3
4.3
2022-01-27 CVE-2021-46509 Uncontrolled Recursion vulnerability in Cesanta MJS 2.20.0
Cesanta MJS v2.20.0 was discovered to contain a stack overflow via snquote at mjs/src/mjs_json.c.
local
low complexity
cesanta CWE-674
7.8
7.8
2022-01-27 CVE-2021-46510 Reachable Assertion vulnerability in Cesanta MJS 2.20.0
There is an Assertion `s < mjs->owned_strings.buf + mjs->owned_strings.len' failed at src/mjs_gc.c in Cesanta MJS v2.20.0.
network
cesanta CWE-617
4.3
4.3