2.4.0

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-20	CVE-2021-41682	Use After Free vulnerability in Jerryscript 2.4.0 There is a heap-use-after-free at ecma-helpers-string.c:1940 in ecma_compare_ecma_non_direct_strings in JerryScript 2.4.0 network jerryscript CWE-416	6.8
2022-06-20	CVE-2021-41683	Out-of-bounds Write vulnerability in Jerryscript 2.4.0 There is a stack-overflow at ecma-helpers.c:326 in ecma_get_lex_env_type in JerryScript 2.4.0 network jerryscript CWE-787	6.8
2022-04-07	CVE-2021-43453	Out-of-bounds Read vulnerability in Jerryscript A Heap-based Buffer Overflow vulnerability exists in JerryScript 2.4.0 and prior versions via an out-of-bounds read in parser_parse_for_statement_start in the js-parser-statm.c file. network low complexity jerryscript CWE-125 critical	9.8
2022-04-05	CVE-2021-41751	Classic Buffer Overflow vulnerability in Jerryscript Buffer overflow vulnerability in file ecma-builtin-array-prototype.c:909 in function ecma_builtin_array_prototype_object_slice in Jerryscript before commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 on Oct 20, 2021. network low complexity jerryscript CWE-120	7.5
2022-04-05	CVE-2021-41752	Uncontrolled Recursion vulnerability in Jerryscript Stack overflow vulnerability in Jerryscript before commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 on Oct 20, 2021 due to an unbounded recursive call to the new opt() function. network low complexity jerryscript CWE-674 critical	9.8
2021-06-10	CVE-2021-26194	Use After Free vulnerability in Jerryscript 2.4.0 An issue was discovered in JerryScript 2.4.0. network jerryscript CWE-416	4.3
2021-06-10	CVE-2021-26195	Out-of-bounds Write vulnerability in Jerryscript 2.4.0 An issue was discovered in JerryScript 2.4.0. network jerryscript CWE-787	6.8
2021-06-10	CVE-2021-26197	Improper Check for Unusual or Exceptional Conditions vulnerability in Jerryscript 2.4.0 An issue was discovered in JerryScript 2.4.0. network jerryscript CWE-754	4.3
2021-06-10	CVE-2021-26198	Unspecified vulnerability in Jerryscript 2.4.0 An issue was discovered in JerryScript 2.4.0. network jerryscript	4.3
2021-06-10	CVE-2021-26199	Use After Free vulnerability in Jerryscript 2.4.0 An issue was discovered in JerryScript 2.4.0. network jerryscript CWE-416	4.3