Vulnerabilities > Jerryscript > Jerryscript > 3.0.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-05-12 | CVE-2023-31921 | Reachable Assertion vulnerability in Jerryscript 3.0.0 Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the ecma_big_uint_div_mod at jerry-core/ecma/operations/ecma-big-uint.c. | 5.5 |
2023-05-10 | CVE-2023-31906 | Out-of-bounds Write vulnerability in Jerryscript 3.0.0 Jerryscript 3.0.0(commit 1a2c047) was discovered to contain a heap-buffer-overflow via the component lexer_compare_identifier_to_chars at /jerry-core/parser/js/js-lexer.c. | 7.8 |
2023-05-10 | CVE-2023-31907 | Out-of-bounds Write vulnerability in Jerryscript 3.0.0 Jerryscript 3.0.0 was discovered to contain a heap-buffer-overflow via the component scanner_literal_is_created at /jerry-core/parser/js/js-scanner-util.c. | 7.8 |
2023-05-10 | CVE-2023-31910 | Out-of-bounds Write vulnerability in Jerryscript 3.0.0 Jerryscript 3.0 (commit 05dbbd1) was discovered to contain a heap-buffer-overflow via the component parser_parse_function_statement at /jerry-core/parser/js/js-parser-statm.c. | 7.8 |
2022-04-05 | CVE-2021-41751 | Classic Buffer Overflow vulnerability in Jerryscript Buffer overflow vulnerability in file ecma-builtin-array-prototype.c:909 in function ecma_builtin_array_prototype_object_slice in Jerryscript before commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 on Oct 20, 2021. | 7.5 |
2022-04-05 | CVE-2021-41752 | Uncontrolled Recursion vulnerability in Jerryscript Stack overflow vulnerability in Jerryscript before commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 on Oct 20, 2021 due to an unbounded recursive call to the new opt() function. | 9.8 |
2022-01-25 | CVE-2021-44988 | Allocation of Resources Without Limits or Throttling vulnerability in Jerryscript 3.0.0 Jerryscript v3.0.0 and below was discovered to contain a stack overflow via ecma_find_named_property in ecma-helpers.c. | 7.8 |
2022-01-25 | CVE-2021-44992 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Jerryscript 3.0.0 There is an Assertion ''ecma_object_is_typedarray (obj_p)'' failed at /jerry-core/ecma/operations/ecma-typedarray-object.c in Jerryscript 3.0.0. | 4.3 |
2022-01-25 | CVE-2021-44993 | Reachable Assertion vulnerability in Jerryscript 3.0.0 There is an Assertion ''ecma_is_value_boolean (base_value)'' failed at /jerry-core/ecma/operations/ecma-get-put-value.c in Jerryscript 3.0.0. | 4.3 |
2022-01-25 | CVE-2021-44994 | Reachable Assertion vulnerability in Jerryscript 3.0.0 There is an Assertion ''JERRY_CONTEXT (jmem_heap_allocated_size) == 0'' failed at /jerry-core/jmem/jmem-heap.c in Jerryscript 3.0.0. | 4.3 |