Vulnerabilities > Facebook > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-11 | CVE-2022-40138 | Incorrect Conversion between Numeric Types vulnerability in Facebook Hermes An integer conversion error in Hermes bytecode generation, prior to commit 6aa825e480d48127b480b08d13adf70033237097, could have been used to perform Out-Of-Bounds operations and subsequently execute arbitrary code. | 9.8 |
| 2022-10-11 | CVE-2022-32234 | Out-of-bounds Write vulnerability in Facebook Hermes An out of bounds write in hermes, while handling large arrays, prior to commit 06eaec767e376bfdb883d912cb15e987ddf2bda1 allows attackers to potentially execute arbitrary code via crafted JavaScript. | 9.8 |
| 2022-01-15 | CVE-2021-24044 | Type Confusion vulnerability in Facebook Hermes By passing invalid javascript code where await and yield were called upon non-async and non-generator getter/setter functions, Hermes would invoke generator functions and error out on invalid await/yield positions. | 9.8 |
| 2021-12-13 | CVE-2021-24045 | Type Confusion vulnerability in Facebook Hermes A type confusion vulnerability could be triggered when resolving the "typeof" unary operator in Facebook Hermes prior to v0.10.0. | 9.8 |
| 2021-09-10 | CVE-2021-24040 | Deserialization of Untrusted Data vulnerability in Facebook Parlai Due to use of unsafe YAML deserialization logic, an attacker with the ability to modify local YAML configuration files could provide malicious input, resulting in remote code execution or similar risks. | 9.8 |
| 2021-07-23 | CVE-2021-24036 | Integer Overflow or Wraparound vulnerability in Facebook Hhvm Passing an attacker controlled size when creating an IOBuf could cause integer overflow, leading to an out of bounds write on the heap with the possibility of remote code execution. | 9.8 |
| 2021-06-15 | CVE-2021-24037 | Use After Free vulnerability in Facebook Hermes A use after free in hermes, while emitting certain error messages, prior to commit d86e185e485b6330216dee8e854455c694e3a36e allows attackers to potentially execute arbitrary code via crafted JavaScript. | 9.8 |
| 2021-04-14 | CVE-2021-24028 | Release of Invalid Pointer or Reference vulnerability in Facebook Thrift An invalid free in Thrift's table-based serialization can cause the application to crash or potentially result in code execution or other undesirable effects. | 9.8 |
| 2021-03-11 | CVE-2020-1900 | Use After Free vulnerability in Facebook Hhvm When unserializing an object with dynamic properties HHVM needs to pre-reserve the full size of the dynamic property array before inserting anything into it. | 9.8 |
| 2021-03-10 | CVE-2021-24030 | Argument Injection or Modification vulnerability in Facebook Gameroom The fbgames protocol handler registered as part of Facebook Gameroom does not properly quote arguments passed to the executable. | 9.8 |