Vulnerabilities > Cesanta > MJS > 2.20.0

DATE CVE VULNERABILITY TITLE RISK
2022-01-27 CVE-2021-46509 Uncontrolled Recursion vulnerability in Cesanta MJS 2.20.0
Cesanta MJS v2.20.0 was discovered to contain a stack overflow via snquote at mjs/src/mjs_json.c.
local
low complexity
cesanta CWE-674
7.8
7.8
2022-01-27 CVE-2021-46510 Reachable Assertion vulnerability in Cesanta MJS 2.20.0
There is an Assertion `s < mjs->owned_strings.buf + mjs->owned_strings.len' failed at src/mjs_gc.c in Cesanta MJS v2.20.0.
local
low complexity
cesanta CWE-617
5.5
5.5
2022-01-27 CVE-2021-46511 Reachable Assertion vulnerability in Cesanta MJS 2.20.0
There is an Assertion `m->len >= sizeof(v)' failed at src/mjs_core.c in Cesanta MJS v2.20.0.
local
low complexity
cesanta CWE-617
5.5
5.5
2022-01-27 CVE-2021-46512 Unspecified vulnerability in Cesanta MJS 2.20.0
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_apply at src/mjs_exec.c.
local
low complexity
cesanta
5.5
5.5
2022-01-27 CVE-2021-46513 Classic Buffer Overflow vulnerability in Cesanta MJS 2.20.0
Cesanta MJS v2.20.0 was discovered to contain a global buffer overflow via mjs_mk_string at mjs/src/mjs_string.c.
local
low complexity
cesanta CWE-120
7.8
7.8
2022-01-27 CVE-2021-46514 Reachable Assertion vulnerability in Cesanta MJS 2.20.0
There is an Assertion 'ppos != NULL && mjs_is_number(*ppos)' failed at src/mjs_core.c in Cesanta MJS v2.20.0.
local
low complexity
cesanta CWE-617
5.5
5.5
2022-01-27 CVE-2021-46515 Reachable Assertion vulnerability in Cesanta MJS 2.20.0
There is an Assertion `mjs_stack_size(&mjs->scopes) >= scopes_len' failed at src/mjs_exec.c in Cesanta MJS v2.20.0.
local
low complexity
cesanta CWE-617
5.5
5.5
2022-01-27 CVE-2021-46516 Unspecified vulnerability in Cesanta MJS 2.20.0
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_stack_size at mjs/src/mjs_core.c.
local
low complexity
cesanta
5.5
5.5
2022-01-27 CVE-2021-46517 Reachable Assertion vulnerability in Cesanta MJS 2.20.0
There is an Assertion `mjs_stack_size(&mjs->scopes) > 0' failed at src/mjs_exec.c in Cesanta MJS v2.20.0.
local
low complexity
cesanta CWE-617
5.5
5.5
2022-01-27 CVE-2021-46518 Out-of-bounds Write vulnerability in Cesanta MJS 2.20.0
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_disown at src/mjs_core.c.
local
low complexity
cesanta CWE-787
7.8
7.8