Vulnerabilities > Espruino > High

DATE CVE VULNERABILITY TITLE RISK
2024-02-07 CVE-2024-25200 Out-of-bounds Write vulnerability in Espruino 2.20
Espruino 2v20 (commit fcc9ba4) was discovered to contain a Stack Overflow via the jspeFactorFunctionCall at src/jsparse.c.
network
low complexity
espruino CWE-787
7.5
7.5
2024-02-07 CVE-2024-25201 Out-of-bounds Read vulnerability in Espruino 2.20
Espruino 2v20 (commit fcc9ba4) was discovered to contain an Out-of-bounds Read via jsvStringIteratorPrintfCallback at src/jsvar.c.
network
low complexity
espruino CWE-125
7.5
7.5
2021-07-13 CVE-2020-22884 Classic Buffer Overflow vulnerability in Espruino
Buffer overflow vulnerability in function jsvGetStringChars in Espruino before RELEASE_2V09, allows remote attackers to execute arbitrary code.
network
low complexity
espruino CWE-120
7.5
7.5